SUSE update for the Linux Kernel



Risk Medium
Patch available YES
Number of vulnerabilities 173
CVE-ID CVE-2022-43945
CVE-2022-50327
CVE-2022-50334
CVE-2022-50470
CVE-2022-50471
CVE-2022-50472
CVE-2022-50475
CVE-2022-50478
CVE-2022-50480
CVE-2022-50482
CVE-2022-50484
CVE-2022-50485
CVE-2022-50487
CVE-2022-50488
CVE-2022-50489
CVE-2022-50490
CVE-2022-50492
CVE-2022-50493
CVE-2022-50494
CVE-2022-50496
CVE-2022-50497
CVE-2022-50498
CVE-2022-50499
CVE-2022-50501
CVE-2022-50503
CVE-2022-50504
CVE-2022-50505
CVE-2022-50509
CVE-2022-50511
CVE-2022-50512
CVE-2022-50513
CVE-2022-50514
CVE-2022-50516
CVE-2022-50519
CVE-2022-50520
CVE-2022-50521
CVE-2022-50523
CVE-2022-50525
CVE-2022-50528
CVE-2022-50529
CVE-2022-50530
CVE-2022-50532
CVE-2022-50534
CVE-2022-50535
CVE-2022-50537
CVE-2022-50541
CVE-2022-50542
CVE-2022-50544
CVE-2022-50545
CVE-2022-50546
CVE-2022-50549
CVE-2022-50551
CVE-2022-50553
CVE-2022-50556
CVE-2022-50559
CVE-2022-50560
CVE-2022-50561
CVE-2022-50562
CVE-2022-50563
CVE-2022-50564
CVE-2022-50566
CVE-2022-50567
CVE-2022-50568
CVE-2022-50570
CVE-2022-50572
CVE-2022-50574
CVE-2022-50575
CVE-2022-50576
CVE-2022-50578
CVE-2022-50579
CVE-2022-50580
CVE-2022-50581
CVE-2022-50582
CVE-2023-52923
CVE-2023-53365
CVE-2023-53500
CVE-2023-53533
CVE-2023-53534
CVE-2023-53541
CVE-2023-53542
CVE-2023-53548
CVE-2023-53551
CVE-2023-53552
CVE-2023-53553
CVE-2023-53554
CVE-2023-53556
CVE-2023-53559
CVE-2023-53560
CVE-2023-53564
CVE-2023-53566
CVE-2023-53567
CVE-2023-53568
CVE-2023-53571
CVE-2023-53572
CVE-2023-53574
CVE-2023-53576
CVE-2023-53579
CVE-2023-53582
CVE-2023-53587
CVE-2023-53589
CVE-2023-53592
CVE-2023-53594
CVE-2023-53597
CVE-2023-53603
CVE-2023-53604
CVE-2023-53605
CVE-2023-53607
CVE-2023-53608
CVE-2023-53611
CVE-2023-53612
CVE-2023-53615
CVE-2023-53616
CVE-2023-53617
CVE-2023-53619
CVE-2023-53622
CVE-2023-53625
CVE-2023-53626
CVE-2023-53631
CVE-2023-53637
CVE-2023-53639
CVE-2023-53640
CVE-2023-53641
CVE-2023-53644
CVE-2023-53648
CVE-2023-53650
CVE-2023-53651
CVE-2023-53658
CVE-2023-53659
CVE-2023-53662
CVE-2023-53667
CVE-2023-53668
CVE-2023-53670
CVE-2023-53673
CVE-2023-53674
CVE-2023-53675
CVE-2023-53679
CVE-2023-53680
CVE-2023-53681
CVE-2023-53683
CVE-2023-53687
CVE-2023-53692
CVE-2023-53693
CVE-2023-53695
CVE-2023-53696
CVE-2023-53700
CVE-2023-53704
CVE-2023-53705
CVE-2023-53708
CVE-2023-53709
CVE-2023-53711
CVE-2023-53715
CVE-2023-53717
CVE-2023-53718
CVE-2023-53719
CVE-2023-53722
CVE-2023-53723
CVE-2023-53724
CVE-2023-53725
CVE-2023-53726
CVE-2023-53730
CVE-2023-7324
CVE-2025-39742
CVE-2025-39797
CVE-2025-39945
CVE-2025-39965
CVE-2025-39967
CVE-2025-39968
CVE-2025-39973
CVE-2025-39978
CVE-2025-40018
CVE-2025-40044
CVE-2025-40088
CVE-2025-40102
CWE-ID CWE-119
CWE-476
CWE-20
CWE-399
CWE-125
CWE-401
CWE-416
CWE-667
CWE-190
CWE-908
CWE-665
CWE-191
CWE-617
CWE-388
CWE-835
CWE-415
CWE-362
CWE-369
Exploitation vector Network
Public exploit Public exploit code for vulnerability #165 is available.
Vulnerable software
 SUSE Manager Server 4.3
Operating systems & Components / Operating system

SUSE Manager Retail Branch Server 4.3
Operating systems & Components / Operating system

SUSE Manager Proxy 4.3
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15 SP4
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing LTSS 15
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing ESPOS 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Micro for Rancher
Operating systems & Components / Operating system

SUSE Linux Enterprise High Availability Extension 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Micro
Operating systems & Components / Operating system

SUSE Linux Enterprise Live Patching
Operating systems & Components / Operating system

SUSE Linux Enterprise Server for SAP Applications 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Real Time 15
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing 15
Operating systems & Components / Operating system

SUSE Manager Retail Branch Server
Operating systems & Components / Operating system

SUSE Manager Server
Operating systems & Components / Operating system

SUSE Manager Proxy
Operating systems & Components / Operating system

openSUSE Leap
Operating systems & Components / Operating system

kernel-64kb
Operating systems & Components / Operating system package or component

dtb-apm
Operating systems & Components / Operating system package or component

dtb-amd
Operating systems & Components / Operating system package or component

dtb-nvidia
Operating systems & Components / Operating system package or component

ocfs2-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

dtb-renesas
Operating systems & Components / Operating system package or component

dtb-qcom
Operating systems & Components / Operating system package or component

dtb-amlogic
Operating systems & Components / Operating system package or component

dtb-altera
Operating systems & Components / Operating system package or component

kernel-64kb-devel-debuginfo
Operating systems & Components / Operating system package or component

reiserfs-kmp-64kb
Operating systems & Components / Operating system package or component

dtb-allwinner
Operating systems & Components / Operating system package or component

dtb-sprd
Operating systems & Components / Operating system package or component

kselftests-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

dlm-kmp-64kb
Operating systems & Components / Operating system package or component

kernel-64kb-extra-debuginfo
Operating systems & Components / Operating system package or component

cluster-md-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

kselftests-kmp-64kb
Operating systems & Components / Operating system package or component

dtb-cavium
Operating systems & Components / Operating system package or component

dtb-apple
Operating systems & Components / Operating system package or component

kernel-64kb-optional
Operating systems & Components / Operating system package or component

reiserfs-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

kernel-64kb-debugsource
Operating systems & Components / Operating system package or component

cluster-md-kmp-64kb
Operating systems & Components / Operating system package or component

dtb-marvell
Operating systems & Components / Operating system package or component

dtb-xilinx
Operating systems & Components / Operating system package or component

dtb-amazon
Operating systems & Components / Operating system package or component

dtb-hisilicon
Operating systems & Components / Operating system package or component

dtb-mediatek
Operating systems & Components / Operating system package or component

dtb-rockchip
Operating systems & Components / Operating system package or component

dtb-arm
Operating systems & Components / Operating system package or component

dtb-broadcom
Operating systems & Components / Operating system package or component

gfs2-kmp-64kb
Operating systems & Components / Operating system package or component

kernel-64kb-debuginfo
Operating systems & Components / Operating system package or component

gfs2-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

dtb-exynos
Operating systems & Components / Operating system package or component

ocfs2-kmp-64kb
Operating systems & Components / Operating system package or component

dlm-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

kernel-64kb-optional-debuginfo
Operating systems & Components / Operating system package or component

dtb-socionext
Operating systems & Components / Operating system package or component

dtb-lg
Operating systems & Components / Operating system package or component

kernel-64kb-devel
Operating systems & Components / Operating system package or component

kernel-64kb-extra
Operating systems & Components / Operating system package or component

dtb-freescale
Operating systems & Components / Operating system package or component

dtb-aarch64
Operating systems & Components / Operating system package or component

kernel-zfcpdump-debugsource
Operating systems & Components / Operating system package or component

kernel-zfcpdump-debuginfo
Operating systems & Components / Operating system package or component

kernel-zfcpdump
Operating systems & Components / Operating system package or component

kernel-kvmsmall
Operating systems & Components / Operating system package or component

kernel-livepatch-SLE15-SP4_Update_46-debugsource
Operating systems & Components / Operating system package or component

kernel-default-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-livepatch-5_14_21-150400_24_184-default
Operating systems & Components / Operating system package or component

kernel-default
Operating systems & Components / Operating system package or component

kernel-default-optional-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-devel
Operating systems & Components / Operating system package or component

kernel-default-debuginfo
Operating systems & Components / Operating system package or component

gfs2-kmp-default
Operating systems & Components / Operating system package or component

kselftests-kmp-default
Operating systems & Components / Operating system package or component

reiserfs-kmp-default
Operating systems & Components / Operating system package or component

kernel-default-debugsource
Operating systems & Components / Operating system package or component

kernel-obs-qa
Operating systems & Components / Operating system package or component

kernel-default-extra-debuginfo
Operating systems & Components / Operating system package or component

reiserfs-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-optional
Operating systems & Components / Operating system package or component

gfs2-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

cluster-md-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-extra
Operating systems & Components / Operating system package or component

kernel-syms
Operating systems & Components / Operating system package or component

ocfs2-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

ocfs2-kmp-default
Operating systems & Components / Operating system package or component

kernel-obs-build
Operating systems & Components / Operating system package or component

kernel-obs-build-debugsource
Operating systems & Components / Operating system package or component

kernel-default-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-livepatch
Operating systems & Components / Operating system package or component

kselftests-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

dlm-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

cluster-md-kmp-default
Operating systems & Components / Operating system package or component

dlm-kmp-default
Operating systems & Components / Operating system package or component

kernel-kvmsmall-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-base
Operating systems & Components / Operating system package or component

kernel-kvmsmall-debugsource
Operating systems & Components / Operating system package or component

kernel-default-base-rebuild
Operating systems & Components / Operating system package or component

kernel-kvmsmall-devel
Operating systems & Components / Operating system package or component

kernel-kvmsmall-debuginfo
Operating systems & Components / Operating system package or component

kernel-source
Operating systems & Components / Operating system package or component

kernel-macros
Operating systems & Components / Operating system package or component

kernel-devel
Operating systems & Components / Operating system package or component

kernel-source-vanilla
Operating systems & Components / Operating system package or component

kernel-docs-html
Operating systems & Components / Operating system package or component

kernel-docs
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 173 vulnerabilities.

1) Buffer overflow

EUVDB-ID: #VU69766

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-43945

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service attacl.

The vulnerability exists due to a boundary error within the Linux kernel NFSD implementation. A remote attacker can send the RPC message over TCP with garbage data added at the end of the message, trigger memory corruption and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) NULL pointer dereference

EUVDB-ID: #VU115438

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50327

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the acpi_processor_get_lpi_info() function in drivers/acpi/processor_idle.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) NULL pointer dereference

EUVDB-ID: #VU115436

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50334

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the hugetlbfs_parse_param() function in fs/hugetlbfs/inode.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Input validation error

EUVDB-ID: #VU116569

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50470

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the xhci_free_virt_device() function in drivers/usb/host/xhci-mem.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Resource management error

EUVDB-ID: #VU116592

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50471

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the gntdev_put_map(), gntdev_vma_close(), gntdev_invalidate() and gntdev_mmap() functions in drivers/xen/gntdev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Resource management error

EUVDB-ID: #VU116593

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50472

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the include/trace/events/ib_mad.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) NULL pointer dereference

EUVDB-ID: #VU116547

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50475

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the setup_port() and destroy_port() functions in drivers/infiniband/core/sysfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Out-of-bounds read

EUVDB-ID: #VU116530

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50478

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the nilfs_valid_sb() function in fs/nilfs2/the_nilfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Memory leak

EUVDB-ID: #VU116502

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50480

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the pl353_smc_probe() function in drivers/memory/pl353-smc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Memory leak

EUVDB-ID: #VU116501

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50482

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the si_domain_init() and init_dmars() functions in drivers/iommu/intel/iommu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Memory leak

EUVDB-ID: #VU116499

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50484

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the sync_ep_set_params() function in sound/usb/endpoint.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Input validation error

EUVDB-ID: #VU116568

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50485

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the swap_inode_boot_loader() function in fs/ext4/ioctl.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) Buffer overflow

EUVDB-ID: #VU116580

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50487

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the nfsd3_init_dirlist_pages() function in fs/nfsd/nfs3proc.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

14) Use-after-free

EUVDB-ID: #VU116521

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50488

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the bfq_put_stable_ref() and bfq_exit_icq_bfqq() functions in block/bfq-iosched.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

15) Memory leak

EUVDB-ID: #VU116498

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50489

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the mipi_dsi_remove_device_fn() function in drivers/gpu/drm/drm_mipi_dsi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

16) Out-of-bounds read

EUVDB-ID: #VU116529

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50490

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the __htab_map_lookup_and_delete_batch() function in kernel/bpf/hashtab.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

17) Use-after-free

EUVDB-ID: #VU116520

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50492

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the msm_drm_uninit() function in drivers/gpu/drm/msm/msm_drv.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

18) Input validation error

EUVDB-ID: #VU116566

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50493

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the qla24xx_abort_iocb_timeout() function in drivers/scsi/qla2xxx/qla_init.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

19) Input validation error

EUVDB-ID: #VU116567

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50494

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the start_power_clamp() function in drivers/thermal/intel_powerclamp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

20) Use-after-free

EUVDB-ID: #VU116519

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50496

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the destroy() function in drivers/md/dm-cache-target.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

21) Out-of-bounds read

EUVDB-ID: #VU116528

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50497

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the LIST_HEAD() function in fs/binfmt_misc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

22) Improper locking

EUVDB-ID: #VU116563

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50498

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the alx_suspend() and alx_resume() functions in drivers/net/ethernet/atheros/alx/main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

23) Use-after-free

EUVDB-ID: #VU116518

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50499

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the dvb_create_media_entity() function in drivers/media/dvb-core/dvbdev.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

24) NULL pointer dereference

EUVDB-ID: #VU116546

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50501

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the coda_setup_iram() function in drivers/media/platform/chips-media/coda-bit.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

25) NULL pointer dereference

EUVDB-ID: #VU116544

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50503

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the lpddr2_nvm_probe() function in drivers/mtd/lpddr/lpddr2_nvm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

26) Resource management error

EUVDB-ID: #VU116583

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50504

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the rtas_os_term() function in arch/powerpc/kernel/rtas.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

27) Memory leak

EUVDB-ID: #VU116495

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50505

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ppr_notifier() function in drivers/iommu/amd/iommu_v2.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

28) NULL pointer dereference

EUVDB-ID: #VU116794

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50509

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the coda_start_encoding() function in drivers/media/platform/chips-media/coda-bit.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

29) Out-of-bounds read

EUVDB-ID: #VU116770

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50511

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the get_default_font() function in lib/fonts/fonts.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

30) Memory leak

EUVDB-ID: #VU116729

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50512

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ext4_fc_record_regions() function in fs/ext4/fast_commit.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

31) Memory leak

EUVDB-ID: #VU116728

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50513

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the rtw_init_cmd_priv() function in drivers/staging/rtl8723bs/core/rtw_cmd.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

32) Memory leak

EUVDB-ID: #VU116726

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50514

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the hidg_alloc() function in drivers/usb/gadget/function/f_hid.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

33) Use-after-free

EUVDB-ID: #VU116760

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50516

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the send_args() function in fs/dlm/lock.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

34) Resource management error

EUVDB-ID: #VU116827

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50519

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the nilfs_segctor_create_checkpoint() and nilfs_segctor_fill_in_checkpoint() functions in fs/nilfs2/segment.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

35) Memory leak

EUVDB-ID: #VU116723

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50520

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the radeon_atrm_get_bios() function in drivers/gpu/drm/radeon/radeon_bios.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

36) Memory leak

EUVDB-ID: #VU116722

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50521

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the mxm_wmi_call_mxds() and mxm_wmi_call_mxmx() functions in drivers/platform/x86/mxm-wmi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

37) Memory leak

EUVDB-ID: #VU116719

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50523

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the rockchip_clk_register_pll() function in drivers/clk/rockchip/clk-pll.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

38) Memory leak

EUVDB-ID: #VU116720

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50525

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the fsl_pamu_probe() function in drivers/iommu/fsl_pamu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

39) Memory leak

EUVDB-ID: #VU116717

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50528

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the amdgpu_amdkfd_gpuvm_import_dmabuf() function in drivers/gpu/drm/amd/amdgpu/amdgpu_amdkfd_gpuvm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

40) Memory leak

EUVDB-ID: #VU116721

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50529

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the test_firmware_init() function in lib/test_firmware.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

41) NULL pointer dereference

EUVDB-ID: #VU116790

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50530

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the blk_mq_clear_rq_mapping() function in block/blk-mq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

42) Memory leak

EUVDB-ID: #VU116715

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50532

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the mpt3sas_transport_port_add() function in drivers/scsi/mpt3sas/mpt3sas_transport.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

43) Improper locking

EUVDB-ID: #VU116805

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50534

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the __open_metadata() function in drivers/md/dm-thin-metadata.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

44) NULL pointer dereference

EUVDB-ID: #VU116788

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50535

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dm_resume() function in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

45) Memory leak

EUVDB-ID: #VU116714

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50537

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the rpi_firmware_probe() function in drivers/firmware/raspberrypi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

46) Integer overflow

EUVDB-ID: #VU116818

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50541

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer overflow within the udma_reset_rings(), udma_reset_counters(), udma_check_tx_completion(), udma_ring_irq_handler(), udma_udma_irq_handler() and udma_tx_status() functions in drivers/dma/ti/k3-udma.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

47) Use-after-free

EUVDB-ID: #VU116757

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50542

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the si470x_usb_driver_probe() function in drivers/media/radio/si470x/radio-si470x-usb.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

48) Memory leak

EUVDB-ID: #VU116708

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50544

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the xhci_alloc_stream_info() function in drivers/usb/host/xhci-mem.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

49) Memory leak

EUVDB-ID: #VU116707

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50545

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the r6040_init_one() and r6040_remove_one() functions in drivers/net/ethernet/rdc/r6040.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

50) Use of uninitialized resource

EUVDB-ID: #VU116817

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50546

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the ext4_alloc_inode() function in fs/ext4/super.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

51) Improper locking

EUVDB-ID: #VU116804

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50549

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the __create_persistent_data_objects(), dm_pool_metadata_close() and __set_abort_with_changes_flags() functions in drivers/md/dm-thin-metadata.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

52) Out-of-bounds read

EUVDB-ID: #VU116769

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50551

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the brcmf_fw_alloc_request() function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/firmware.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

53) Out-of-bounds read

EUVDB-ID: #VU116768

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50553

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the create_var_ref() and trace_action_create() functions in kernel/trace/trace_events_hist.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

54) NULL pointer dereference

EUVDB-ID: #VU117591

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50556

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the drm_mode_config_init_release() and drmm_mode_config_init() functions in drivers/gpu/drm/drm_mode_config.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

55) Memory leak

EUVDB-ID: #VU117567

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50559

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the imx_clk_scu_alloc_dev() function in drivers/clk/imx/clk-scu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

56) Use-after-free

EUVDB-ID: #VU117574

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50560

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the meson_drv_probe() function in drivers/gpu/drm/meson/meson_drv.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

57) Memory leak

EUVDB-ID: #VU117566

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50561

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the iio_device_register_eventset() function in drivers/iio/industrialio-event.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

58) Memory leak

EUVDB-ID: #VU117565

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50562

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the tpm_read_log_acpi() function in drivers/char/tpm/eventlog/acpi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

59) Use-after-free

EUVDB-ID: #VU117571

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50563

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the __pool_destroy() function in drivers/md/dm-thin.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

60) Improper Initialization

EUVDB-ID: #VU117605

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50564

CWE-ID: CWE-665 - Improper Initialization

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper initialization within the netiucv_close() function in drivers/s390/net/netiucv.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

61) Memory leak

EUVDB-ID: #VU117561

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50566

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the add_mtd_device() function in drivers/mtd/mtdcore.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

62) Out-of-bounds read

EUVDB-ID: #VU117584

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50567

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the dbMount() function in fs/jfs/jfs_dmap.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

63) Use-after-free

EUVDB-ID: #VU117572

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50568

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the func_to_hidg(), hidg_bind(), hidg_free(), hidg_unbind() and hidg_alloc() functions in drivers/usb/gadget/function/f_hid.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

64) Buffer overflow

EUVDB-ID: #VU117603

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50570

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the cros_ec_chardev_ioctl_readmem() function in drivers/platform/chrome/cros_ec_chardev.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

65) Memory leak

EUVDB-ID: #VU117560

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50572

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the graph_for_each_link() function in sound/soc/generic/audio-graph-card.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

66) Memory leak

EUVDB-ID: #VU117558

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50574

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the __dss_uninit_ports() and dss_init_ports() functions in drivers/gpu/drm/omapdrm/dss/dss.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

67) Buffer overflow

EUVDB-ID: #VU117614

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50575

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the privcmd_ioctl_mmap_resource() function in drivers/xen/privcmd.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

68) Memory leak

EUVDB-ID: #VU117557

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50576

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the pch_request_dma() function in drivers/tty/serial/pch_uart.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

69) Memory leak

EUVDB-ID: #VU117555

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50578

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the __class_register() function in drivers/base/class.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

70) Use-after-free

EUVDB-ID: #VU117570

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50579

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ftrace_make_nop() function in arch/arm64/kernel/ftrace.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

71) Buffer overflow

EUVDB-ID: #VU117613

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50580

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the tg_with_in_bps_limit() function in block/blk-throttle.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

72) Out-of-bounds read

EUVDB-ID: #VU117582

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50581

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the hfs_write_inode() function in fs/hfs/inode.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

73) Integer underflow

EUVDB-ID: #VU117602

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-50582

CWE-ID: CWE-191 - Integer underflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer underflow within the _regulator_do_enable() function in drivers/regulator/core.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

74) Improper locking

EUVDB-ID: #VU103086

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52923

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the nft_rbtree_cmp(), __nft_rbtree_lookup(), nft_rbtree_get(), nft_rbtree_gc_elem(), nft_rbtree_activate(), nft_rbtree_flush() and nft_rbtree_gc() functions in net/netfilter/nft_set_rbtree.c, within the pipapo_drop(), pipapo_gc() and nft_pipapo_activate() functions in net/netfilter/nft_set_pipapo.c, within the nft_rhash_cmp(), nft_rhash_activate(), nft_rhash_flush(), nft_rhash_deactivate(), nft_rhash_gc() and nft_rhash_destroy() functions in net/netfilter/nft_set_hash.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

75) Improper locking

EUVDB-ID: #VU115802

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53365

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ip6mr_cache_report() function in net/ipv6/ip6mr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

76) Buffer overflow

EUVDB-ID: #VU116308

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53500

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the xfrmi_xmit() function in net/xfrm/xfrm_interface_core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

77) Memory leak

EUVDB-ID: #VU116494

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53533

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the rpi_ts_probe() function in drivers/input/touchscreen/raspberrypi-ts.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

78) NULL pointer dereference

EUVDB-ID: #VU116542

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53534

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mtk_drm_crtc_create() function in drivers/gpu/drm/mediatek/mtk_drm_crtc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

79) Out-of-bounds read

EUVDB-ID: #VU116525

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53541

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the write_oob_to_regs() function in drivers/mtd/nand/raw/brcmnand/brcmnand.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

80) Input validation error

EUVDB-ID: #VU116595

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53542

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the function in arch/arm/boot/dts/exynos5420.dtsi. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

81) Resource management error

EUVDB-ID: #VU116591

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53548

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the function in drivers/net/usb/usbnet.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

82) NULL pointer dereference

EUVDB-ID: #VU116540

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53551

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the gserial_disconnect() and EXPORT_SYMBOL_GPL() functions in drivers/usb/gadget/function/u_serial.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

83) Memory leak

EUVDB-ID: #VU116492

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53552

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the i915_fence_release() function in drivers/gpu/drm/i915/i915_request.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

84) Buffer overflow

EUVDB-ID: #VU116577

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53553

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the mousevsc_on_receive() function in drivers/hid/hid-hyperv.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

85) Buffer overflow

EUVDB-ID: #VU116578

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53554

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the ks_wlan_set_encode_ext() function in drivers/staging/ks7010/ks_wlan_net.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

86) Use-after-free

EUVDB-ID: #VU116513

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53556

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the iavf_alloc_q_vectors() function in drivers/net/ethernet/intel/iavf/iavf_main.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

87) Use-after-free

EUVDB-ID: #VU116512

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53559

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the vti_tunnel_xmit() function in net/ipv4/ip_vti.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

88) Use-after-free

EUVDB-ID: #VU116511

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53560

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the event_hist_trigger_func() function in kernel/trace/trace_events_hist.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

89) Reachable assertion

EUVDB-ID: #VU116570

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53564

CWE-ID: CWE-617 - Reachable Assertion

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to reachable assertion within the __ocfs2_move_extent() function in fs/ocfs2/move_extents.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

90) Use-after-free

EUVDB-ID: #VU116510

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53566

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nft_rbtree_gc_elem() and __nft_rbtree_insert() functions in net/netfilter/nft_set_rbtree.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

91) Memory leak

EUVDB-ID: #VU116489

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53567

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the spi_qup_remove() function in drivers/spi/spi-qup.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

92) Memory leak

EUVDB-ID: #VU116490

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53568

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the zcdn_create() function in drivers/s390/crypto/zcrypt_api.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

93) NULL pointer dereference

EUVDB-ID: #VU116536

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53571

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the intel_get_crtc_new_encoder() function in drivers/gpu/drm/i915/display/intel_display.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

94) Use-after-free

EUVDB-ID: #VU116509

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53572

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the imx_clk_scu_alloc_dev() function in drivers/clk/imx/clk-scu.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

95) Memory leak

EUVDB-ID: #VU116488

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53574

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the rtw_core_deinit() function in drivers/net/wireless/realtek/rtw88/main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

96) Improper error handling

EUVDB-ID: #VU116573

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53576

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the null_init_tag_set() function in drivers/block/null_blk/main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

97) Memory leak

EUVDB-ID: #VU116487

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53579

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the mvebu_gpio_probe_syscon() and mvebu_gpio_probe() functions in drivers/gpio/gpio-mvebu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

98) Out-of-bounds read

EUVDB-ID: #VU116524

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53582

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the brcmf_c_preinit_dcmds() function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/common.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

99) Use-after-free

EUVDB-ID: #VU116508

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53587

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the rb_free_cpu_buffer() and ring_buffer_free() functions in kernel/trace/ring_buffer.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

100) Input validation error

EUVDB-ID: #VU116565

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53589

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the iwl_mvm_update_mcc() function in drivers/net/wireless/intel/iwlwifi/mvm/nvm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

101) Memory leak

EUVDB-ID: #VU116486

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53592

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the sifive_gpio_probe() function in drivers/gpio/gpio-sifive.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

102) Memory leak

EUVDB-ID: #VU116484

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53594

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the device_add() function in drivers/base/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

103) Memory leak

EUVDB-ID: #VU116482

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53597

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the cifs_demultiplex_thread() function in fs/smb/client/connect.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

104) NULL pointer dereference

EUVDB-ID: #VU116532

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53603

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the qla24xx_issue_sa_replace_iocb() function in drivers/scsi/qla2xxx/qla_edif.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

105) Memory leak

EUVDB-ID: #VU116480

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53604

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the dm_integrity_init() function in drivers/md/dm-integrity.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

106) Memory leak

EUVDB-ID: #VU116479

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53605

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the dc_construct_ctx() function in drivers/gpu/drm/amd/display/dc/core/dc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

107) Infinite loop

EUVDB-ID: #VU116581

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53607

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the snd_ymfpci_memalloc() function in sound/pci/ymfpci/ymfpci_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

108) Use-after-free

EUVDB-ID: #VU116507

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53608

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nilfs_segctor_thread() function in fs/nilfs2/segment.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

109) Memory leak

EUVDB-ID: #VU116476

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53611

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the try_smi_init() function in drivers/char/ipmi/ipmi_si_intf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

110) NULL pointer dereference

EUVDB-ID: #VU116531

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53612

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the coretemp_remove_core(), coretemp_cpu_online(), coretemp_cpu_offline() and coretemp_init() functions in drivers/hwmon/coretemp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

111) Improper locking

EUVDB-ID: #VU116550

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53615

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the qlt_free_session_done() and qlt_unreg_sess() functions in drivers/scsi/qla2xxx/qla_target.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

112) Double free

EUVDB-ID: #VU116571

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53616

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the diUnmount() function in fs/jfs/jfs_imap.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

113) Memory leak

EUVDB-ID: #VU116703

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53617

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the aspeed_socinfo_init() function in drivers/soc/aspeed/aspeed-socinfo.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

114) Use-after-free

EUVDB-ID: #VU116754

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53619

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nf_conntrack_helper_register() and nf_conntrack_helper_fini() functions in net/netfilter/nf_conntrack_helper.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

115) Improper locking

EUVDB-ID: #VU116802

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53622

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the gfs2_show_options() function in fs/gfs2/super.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

116) NULL pointer dereference

EUVDB-ID: #VU116784

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53625

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the intel_gvt_debugfs_add_vgpu() function in drivers/gpu/drm/i915/gvt/debugfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

117) Input validation error

EUVDB-ID: #VU116831

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53626

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ext4_rename() function in fs/ext4/namei.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

118) Memory leak

EUVDB-ID: #VU116702

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53631

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the init_bios_attributes() function in drivers/platform/x86/dell/dell-wmi-sysman/sysman.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

119) Memory leak

EUVDB-ID: #VU116700

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53637

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ov772x_probe() function in drivers/media/i2c/ov772x.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

120) Race condition

EUVDB-ID: #VU116822

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53639

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the ath6kl_htc_pipe_rx_complete() function in drivers/net/wireless/ath/ath6kl/htc_pipe.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

121) Out-of-bounds read

EUVDB-ID: #VU116767

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53640

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the tx_macro_put_dec_enum() function in sound/soc/codecs/lpass-tx-macro.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

122) Memory leak

EUVDB-ID: #VU116699

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53641

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ath9k_hif_usb_alloc_tx_urbs() function in drivers/net/wireless/ath/ath9k/hif_usb.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

123) Improper locking

EUVDB-ID: #VU116798

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53644

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the usb_shark_probe() function in drivers/media/radio/radio-shark2.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

124) NULL pointer dereference

EUVDB-ID: #VU116779

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53648

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the snd_ac97_mixer() function in sound/pci/ac97/ac97_codec.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

125) Memory leak

EUVDB-ID: #VU116696

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53650

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the mipid_spi_probe() function in drivers/video/fbdev/omap/lcd_mipid.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

126) Use-after-free

EUVDB-ID: #VU116749

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53651

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the exc3000_schedule_timer() and exc3000_probe() functions in drivers/input/touchscreen/exc3000.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

127) Use-after-free

EUVDB-ID: #VU116747

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53658

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the bcm_qspi_probe() function in drivers/spi/spi-bcm-qspi.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

128) Out-of-bounds read

EUVDB-ID: #VU116764

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53659

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the iavf_set_channels() function in drivers/net/ethernet/intel/iavf/iavf_ethtool.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

129) Memory leak

EUVDB-ID: #VU116695

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53662

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ext4_fname_setup_filename() and ext4_fname_prepare_lookup() functions in fs/ext4/crypto.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

130) Improper locking

EUVDB-ID: #VU116797

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53667

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the cdc_ncm_check_tx_max() and cdc_ncm_fill_tx_frame() functions in drivers/net/usb/cdc_ncm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

131) Improper locking

EUVDB-ID: #VU116796

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53668

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ring_buffer_size() function in kernel/trace/ring_buffer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

132) Memory leak

EUVDB-ID: #VU116693

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53670

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the nvme_init_ctrl() function in drivers/nvme/host/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

133) Use-after-free

EUVDB-ID: #VU116746

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53673

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the hci_cs_disconnect() function in net/bluetooth/hci_event.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

134) Memory leak

EUVDB-ID: #VU116692

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53674

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the devm_clk_notifier_register() function in drivers/clk/clk.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

135) Out-of-bounds read

EUVDB-ID: #VU116763

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53675

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the ses_enclosure_data_process() function in drivers/scsi/ses.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

136) NULL pointer dereference

EUVDB-ID: #VU116773

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53679

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mt7601u_rx_next_seg_len() function in drivers/net/wireless/mediatek/mt7601u/dma.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

137) Out-of-bounds read

EUVDB-ID: #VU116761

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53680

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the nfsd4_decode_compound() function in fs/nfsd/nfs4xdr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

138) NULL pointer dereference

EUVDB-ID: #VU116772

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53681

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the __bch_btree_node_alloc() function in drivers/md/bcache/btree.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

139) Improper error handling

EUVDB-ID: #VU116814

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53683

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the hfsplus_cat_read_inode() and hfsplus_cat_write_inode() functions in fs/hfsplus/inode.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

140) Memory leak

EUVDB-ID: #VU116687

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53687

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the s3c24xx_serial_getclk() function in drivers/tty/serial/samsung.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

141) Use-after-free

EUVDB-ID: #VU117569

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53692

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ext4_clu_mapped() function in fs/ext4/extents.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

142) Memory leak

EUVDB-ID: #VU117554

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53693

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the gadget_bind() function in drivers/usb/gadget/legacy/raw_gadget.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

143) Input validation error

EUVDB-ID: #VU117617

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53695

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the __udf_iget() function in fs/udf/inode.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

144) Memory leak

EUVDB-ID: #VU117553

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53696

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the qla2x00_probe_one() function in drivers/scsi/qla2xxx/qla_os.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

145) Memory leak

EUVDB-ID: #VU117551

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53700

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the max9286_v4l2_register() function in drivers/media/i2c/max9286.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

146) Memory leak

EUVDB-ID: #VU117550

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53704

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the imx8mp_clocks_probe() function in drivers/clk/imx/clk-imx8mp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

147) Out-of-bounds read

EUVDB-ID: #VU117580

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53705

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the ipv6_find_tlv() function in net/ipv6/exthdrs_core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

148) Memory leak

EUVDB-ID: #VU117616

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53708

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the lpi_device_get_constraints_amd() function in drivers/acpi/x86/s2idle.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

149) Input validation error

EUVDB-ID: #VU117597

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53709

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the rb_check_bpage() and rb_check_list() functions in kernel/trace/ring_buffer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

150) Buffer overflow

EUVDB-ID: #VU117609

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53711

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the nfs_file_direct_read() function in fs/nfs/direct.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

151) Memory leak

EUVDB-ID: #VU117548

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53715

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the brcmf_map_fw_linkdown_reason() function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

152) Out-of-bounds read

EUVDB-ID: #VU117578

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53717

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the ath9k_wmi_cmd() function in drivers/net/wireless/ath/ath9k/wmi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

153) NULL pointer dereference

EUVDB-ID: #VU117587

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53718

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the update_max_tr_single() function in kernel/trace/trace.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

154) Memory leak

EUVDB-ID: #VU117546

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53719

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the arc_serial_probe() function in drivers/tty/serial/arc_uart.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

155) Out-of-bounds read

EUVDB-ID: #VU117579

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53722

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the raid1_remove_disk() function in drivers/md/raid1.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

156) Resource management error

EUVDB-ID: #VU117606

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53723

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the sdma_v4_0_hw_fini() function in drivers/gpu/drm/amd/amdgpu/sdma_v4_0.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

157) Memory leak

EUVDB-ID: #VU117544

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53724

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the pcf50633_adc_async_read() function in drivers/mfd/pcf50633-adc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

158) Memory leak

EUVDB-ID: #VU117543

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53725

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ttc_timer_probe() function in drivers/clocksource/timer-cadence-ttc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

159) Out-of-bounds read

EUVDB-ID: #VU117576

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53726

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the do_csum() function in arch/arm64/lib/csum.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

160) Improper locking

EUVDB-ID: #VU117593

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53730

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the adjust_inuse_and_calc_cost() function in block/blk-iocost.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

161) Out-of-bounds read

EUVDB-ID: #VU117795

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-7324

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the ses_match_host(), ses_process_descriptor() and ses_enclosure_data_process() functions in drivers/scsi/ses.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

162) Division by zero

EUVDB-ID: #VU115548

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-39742

CWE-ID: CWE-369 - Divide By Zero

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a division by zero error within the find_hw_thread_mask() function in drivers/infiniband/hw/hfi1/affinity.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

163) Improper error handling

EUVDB-ID: #VU115516

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-39797

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the xfrm_state_lookup_byspi() and xfrm_alloc_spi() functions in net/xfrm/xfrm_state.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

164) Use-after-free

EUVDB-ID: #VU116459

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-39945

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the cnic_cm_stop_bnx2x_hw() function in drivers/net/ethernet/broadcom/cnic.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

165) Use-after-free

EUVDB-ID: #VU116927

Risk: Low

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2025-39965

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the xfrm_alloc_spi() function in net/xfrm/xfrm_state.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

166) Integer overflow

EUVDB-ID: #VU117280

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-39967

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer overflow within the fbcon_set_font() function in drivers/video/fbdev/core/fbcon.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

167) Buffer overflow

EUVDB-ID: #VU117288

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-39968

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the i40e_vc_del_cloud_filter() and i40e_vc_add_cloud_filter() functions in drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

168) Input validation error

EUVDB-ID: #VU117274

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-39973

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the i40e_config_vsi_tx_queue() and i40e_config_vsi_rx_queue() functions in drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

169) Use-after-free

EUVDB-ID: #VU117262

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-39978

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the otx2_tc_add_flow() function in drivers/net/ethernet/marvell/octeontx2/nic/otx2_tc.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

170) Use-after-free

EUVDB-ID: #VU117654

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-40018

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the __ip_vs_ftp_exit() and ip_vs_ftp_init() functions in net/netfilter/ipvs/ip_vs_ftp.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

171) Use-after-free

EUVDB-ID: #VU117723

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-40044

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the udf_current_aext() function in fs/udf/inode.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

172) Out-of-bounds read

EUVDB-ID: #VU117848

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-40088

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the hfsplus_strcasecmp() and hfsplus_strcmp() functions in fs/hfsplus/unicode.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

173) Improper error handling

EUVDB-ID: #VU117861

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-40102

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the kvm_arch_vcpu_ioctl() function in arch/arm64/kvm/arm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Manager Server 4.3: LTS

SUSE Manager Retail Branch Server 4.3: LTS

SUSE Manager Proxy 4.3: LTS

SUSE Linux Enterprise Server 15 SP4: LTSS

SUSE Linux Enterprise High Performance Computing LTSS 15: SP4

SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Linux Enterprise High Availability Extension 15: SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-64kb: before 5.14.21-150400.24.184.1

dtb-apm: before 5.14.21-150400.24.184.1

dtb-amd: before 5.14.21-150400.24.184.1

dtb-nvidia: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-renesas: before 5.14.21-150400.24.184.1

dtb-qcom: before 5.14.21-150400.24.184.1

dtb-amlogic: before 5.14.21-150400.24.184.1

dtb-altera: before 5.14.21-150400.24.184.1

kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-allwinner: before 5.14.21-150400.24.184.1

dtb-sprd: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kselftests-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-cavium: before 5.14.21-150400.24.184.1

dtb-apple: before 5.14.21-150400.24.184.1

kernel-64kb-optional: before 5.14.21-150400.24.184.1

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-debugsource: before 5.14.21-150400.24.184.1

cluster-md-kmp-64kb: before 5.14.21-150400.24.184.1

dtb-marvell: before 5.14.21-150400.24.184.1

dtb-xilinx: before 5.14.21-150400.24.184.1

dtb-amazon: before 5.14.21-150400.24.184.1

dtb-hisilicon: before 5.14.21-150400.24.184.1

dtb-mediatek: before 5.14.21-150400.24.184.1

dtb-rockchip: before 5.14.21-150400.24.184.1

dtb-arm: before 5.14.21-150400.24.184.1

dtb-broadcom: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb: before 5.14.21-150400.24.184.1

kernel-64kb-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

dtb-exynos: before 5.14.21-150400.24.184.1

ocfs2-kmp-64kb: before 5.14.21-150400.24.184.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.184.1

kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.184.1

dtb-socionext: before 5.14.21-150400.24.184.1

dtb-lg: before 5.14.21-150400.24.184.1

kernel-64kb-devel: before 5.14.21-150400.24.184.1

kernel-64kb-extra: before 5.14.21-150400.24.184.1

dtb-freescale: before 5.14.21-150400.24.184.1

dtb-aarch64: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debugsource: before 5.14.21-150400.24.184.1

kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.184.1

kernel-zfcpdump: before 5.14.21-150400.24.184.1

kernel-kvmsmall: before 5.14.21-150400.24.184.1

kernel-livepatch-SLE15-SP4_Update_46-debugsource: before 1-150400.9.5.1

kernel-default-livepatch-devel: before 5.14.21-150400.24.184.1

kernel-livepatch-5_14_21-150400_24_184-default-debuginfo: before 1-150400.9.5.1

kernel-livepatch-5_14_21-150400_24_184-default: before 1-150400.9.5.1

kernel-default: before 5.14.21-150400.24.184.1

kernel-default-optional-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-devel: before 5.14.21-150400.24.184.1

kernel-default-debuginfo: before 5.14.21-150400.24.184.1

gfs2-kmp-default: before 5.14.21-150400.24.184.1

kselftests-kmp-default: before 5.14.21-150400.24.184.1

reiserfs-kmp-default: before 5.14.21-150400.24.184.1

kernel-default-debugsource: before 5.14.21-150400.24.184.1

kernel-obs-qa: before 5.14.21-150400.24.184.1

kernel-default-extra-debuginfo: before 5.14.21-150400.24.184.1

reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-optional: before 5.14.21-150400.24.184.1

gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-extra: before 5.14.21-150400.24.184.1

kernel-syms: before 5.14.21-150400.24.184.1

ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

ocfs2-kmp-default: before 5.14.21-150400.24.184.1

kernel-obs-build: before 5.14.21-150400.24.184.1

kernel-obs-build-debugsource: before 5.14.21-150400.24.184.1

kernel-default-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-livepatch: before 5.14.21-150400.24.184.1

kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

dlm-kmp-default-debuginfo: before 5.14.21-150400.24.184.1

cluster-md-kmp-default: before 5.14.21-150400.24.184.1

dlm-kmp-default: before 5.14.21-150400.24.184.1

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.184.1

kernel-default-base: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-debugsource: before 5.14.21-150400.24.184.1

kernel-default-base-rebuild: before 5.14.21-150400.24.184.1.150400.24.94.2

kernel-kvmsmall-devel: before 5.14.21-150400.24.184.1

kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.184.1

kernel-source: before 5.14.21-150400.24.184.1

kernel-macros: before 5.14.21-150400.24.184.1

kernel-devel: before 5.14.21-150400.24.184.1

kernel-source-vanilla: before 5.14.21-150400.24.184.1

kernel-docs-html: before 5.14.21-150400.24.184.1

kernel-docs: before 5.14.21-150400.24.184.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2025/suse-su-20254111-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###