SUSE update for the Linux Kernel



Risk Medium
Patch available YES
Number of vulnerabilities 296
CVE-ID CVE-2021-4204
CVE-2021-4441
CVE-2021-47106
CVE-2021-47517
CVE-2021-47546
CVE-2022-0500
CVE-2022-23222
CVE-2022-38457
CVE-2022-40133
CVE-2022-4382
CVE-2022-48645
CVE-2022-48706
CVE-2022-48808
CVE-2022-48865
CVE-2022-48868
CVE-2022-48869
CVE-2022-48870
CVE-2022-48871
CVE-2022-48872
CVE-2022-48873
CVE-2022-48875
CVE-2022-48878
CVE-2022-48880
CVE-2022-48881
CVE-2022-48882
CVE-2022-48883
CVE-2022-48884
CVE-2022-48885
CVE-2022-48886
CVE-2022-48887
CVE-2022-48888
CVE-2022-48889
CVE-2022-48890
CVE-2022-48891
CVE-2022-48893
CVE-2022-48896
CVE-2022-48898
CVE-2022-48899
CVE-2022-48903
CVE-2022-48904
CVE-2022-48905
CVE-2022-48906
CVE-2022-48907
CVE-2022-48909
CVE-2022-48910
CVE-2022-48912
CVE-2022-48913
CVE-2022-48914
CVE-2022-48915
CVE-2022-48916
CVE-2022-48917
CVE-2022-48918
CVE-2022-48919
CVE-2022-48920
CVE-2022-48921
CVE-2022-48923
CVE-2022-48924
CVE-2022-48925
CVE-2022-48926
CVE-2022-48927
CVE-2022-48928
CVE-2022-48929
CVE-2022-48930
CVE-2022-48931
CVE-2022-48932
CVE-2022-48934
CVE-2022-48937
CVE-2022-48938
CVE-2022-48939
CVE-2022-48940
CVE-2022-48941
CVE-2022-48942
CVE-2022-48943
CVE-2023-3610
CVE-2023-52458
CVE-2023-52489
CVE-2023-52498
CVE-2023-52581
CVE-2023-52859
CVE-2023-52887
CVE-2023-52889
CVE-2023-52893
CVE-2023-52894
CVE-2023-52896
CVE-2023-52898
CVE-2023-52899
CVE-2023-52900
CVE-2023-52901
CVE-2023-52904
CVE-2023-52905
CVE-2023-52906
CVE-2023-52907
CVE-2023-52908
CVE-2023-52909
CVE-2023-52910
CVE-2023-52911
CVE-2023-52912
CVE-2023-52913
CVE-2024-26631
CVE-2024-26668
CVE-2024-26669
CVE-2024-26677
CVE-2024-26735
CVE-2024-26808
CVE-2024-26812
CVE-2024-26835
CVE-2024-26851
CVE-2024-27010
CVE-2024-27011
CVE-2024-27016
CVE-2024-27024
CVE-2024-27079
CVE-2024-27403
CVE-2024-31076
CVE-2024-35897
CVE-2024-35902
CVE-2024-35945
CVE-2024-35971
CVE-2024-36009
CVE-2024-36013
CVE-2024-36270
CVE-2024-36286
CVE-2024-36489
CVE-2024-36929
CVE-2024-36933
CVE-2024-36936
CVE-2024-36962
CVE-2024-38554
CVE-2024-38602
CVE-2024-38662
CVE-2024-39489
CVE-2024-40905
CVE-2024-40978
CVE-2024-40980
CVE-2024-40995
CVE-2024-41000
CVE-2024-41007
CVE-2024-41009
CVE-2024-41011
CVE-2024-41016
CVE-2024-41020
CVE-2024-41022
CVE-2024-41035
CVE-2024-41036
CVE-2024-41038
CVE-2024-41039
CVE-2024-41042
CVE-2024-41045
CVE-2024-41056
CVE-2024-41060
CVE-2024-41062
CVE-2024-41065
CVE-2024-41068
CVE-2024-41073
CVE-2024-41079
CVE-2024-41080
CVE-2024-41087
CVE-2024-41088
CVE-2024-41089
CVE-2024-41092
CVE-2024-41093
CVE-2024-41095
CVE-2024-41097
CVE-2024-41098
CVE-2024-42069
CVE-2024-42074
CVE-2024-42076
CVE-2024-42077
CVE-2024-42080
CVE-2024-42082
CVE-2024-42085
CVE-2024-42086
CVE-2024-42087
CVE-2024-42089
CVE-2024-42090
CVE-2024-42092
CVE-2024-42095
CVE-2024-42097
CVE-2024-42098
CVE-2024-42101
CVE-2024-42104
CVE-2024-42106
CVE-2024-42107
CVE-2024-42110
CVE-2024-42114
CVE-2024-42115
CVE-2024-42119
CVE-2024-42120
CVE-2024-42121
CVE-2024-42126
CVE-2024-42127
CVE-2024-42130
CVE-2024-42137
CVE-2024-42139
CVE-2024-42142
CVE-2024-42143
CVE-2024-42148
CVE-2024-42152
CVE-2024-42155
CVE-2024-42156
CVE-2024-42157
CVE-2024-42158
CVE-2024-42162
CVE-2024-42223
CVE-2024-42225
CVE-2024-42228
CVE-2024-42229
CVE-2024-42230
CVE-2024-42232
CVE-2024-42236
CVE-2024-42237
CVE-2024-42238
CVE-2024-42239
CVE-2024-42240
CVE-2024-42244
CVE-2024-42246
CVE-2024-42247
CVE-2024-42268
CVE-2024-42271
CVE-2024-42274
CVE-2024-42276
CVE-2024-42277
CVE-2024-42280
CVE-2024-42281
CVE-2024-42283
CVE-2024-42284
CVE-2024-42285
CVE-2024-42286
CVE-2024-42287
CVE-2024-42288
CVE-2024-42289
CVE-2024-42291
CVE-2024-42292
CVE-2024-42295
CVE-2024-42301
CVE-2024-42302
CVE-2024-42308
CVE-2024-42309
CVE-2024-42310
CVE-2024-42311
CVE-2024-42312
CVE-2024-42313
CVE-2024-42315
CVE-2024-42318
CVE-2024-42319
CVE-2024-42320
CVE-2024-42322
CVE-2024-43816
CVE-2024-43818
CVE-2024-43819
CVE-2024-43821
CVE-2024-43823
CVE-2024-43829
CVE-2024-43830
CVE-2024-43831
CVE-2024-43834
CVE-2024-43837
CVE-2024-43839
CVE-2024-43841
CVE-2024-43842
CVE-2024-43846
CVE-2024-43849
CVE-2024-43853
CVE-2024-43854
CVE-2024-43856
CVE-2024-43858
CVE-2024-43860
CVE-2024-43861
CVE-2024-43863
CVE-2024-43866
CVE-2024-43867
CVE-2024-43871
CVE-2024-43872
CVE-2024-43873
CVE-2024-43879
CVE-2024-43880
CVE-2024-43882
CVE-2024-43883
CVE-2024-43884
CVE-2024-43889
CVE-2024-43892
CVE-2024-43893
CVE-2024-43894
CVE-2024-43895
CVE-2024-43899
CVE-2024-43900
CVE-2024-43902
CVE-2024-43903
CVE-2024-43904
CVE-2024-43905
CVE-2024-43907
CVE-2024-43908
CVE-2024-43909
CVE-2024-44938
CVE-2024-44939
CVE-2024-44947
CWE-ID CWE-125
CWE-476
CWE-416
CWE-401
CWE-787
CWE-264
CWE-362
CWE-388
CWE-667
CWE-119
CWE-399
CWE-20
CWE-617
CWE-366
CWE-190
CWE-825
CWE-191
CWE-682
CWE-908
CWE-415
CWE-835
CWE-369
Exploitation vector Network
Public exploit Public exploit code for vulnerability #1 is available.
Public exploit code for vulnerability #7 is available.
Public exploit code for vulnerability #296 is available.
Vulnerable software
 openSUSE Leap Micro
Operating systems & Components / Operating system

SUSE Linux Enterprise Micro
Operating systems & Components / Operating system

SUSE Linux Enterprise Live Patching
Operating systems & Components / Operating system

SUSE Linux Enterprise High Availability Extension 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Workstation Extension 15
Operating systems & Components / Operating system

Development Tools Module
Operating systems & Components / Operating system

Legacy Module
Operating systems & Components / Operating system

Basesystem Module
Operating systems & Components / Operating system

SUSE Linux Enterprise Server for SAP Applications 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Real Time 15
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Desktop 15
Operating systems & Components / Operating system

openSUSE Leap
Operating systems & Components / Operating system

kernel-64kb
Operating systems & Components / Operating system package or component

kernel-64kb-extra-debuginfo
Operating systems & Components / Operating system package or component

dtb-renesas
Operating systems & Components / Operating system package or component

dtb-mediatek
Operating systems & Components / Operating system package or component

dtb-hisilicon
Operating systems & Components / Operating system package or component

kernel-64kb-livepatch-devel
Operating systems & Components / Operating system package or component

gfs2-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

dtb-marvell
Operating systems & Components / Operating system package or component

dtb-cavium
Operating systems & Components / Operating system package or component

ocfs2-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

kernel-64kb-extra
Operating systems & Components / Operating system package or component

cluster-md-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

reiserfs-kmp-64kb
Operating systems & Components / Operating system package or component

kernel-64kb-optional
Operating systems & Components / Operating system package or component

dlm-kmp-64kb
Operating systems & Components / Operating system package or component

dtb-apple
Operating systems & Components / Operating system package or component

dtb-apm
Operating systems & Components / Operating system package or component

kernel-64kb-devel
Operating systems & Components / Operating system package or component

dtb-freescale
Operating systems & Components / Operating system package or component

dtb-sprd
Operating systems & Components / Operating system package or component

dtb-socionext
Operating systems & Components / Operating system package or component

dtb-broadcom
Operating systems & Components / Operating system package or component

dtb-allwinner
Operating systems & Components / Operating system package or component

dlm-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

reiserfs-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

dtb-xilinx
Operating systems & Components / Operating system package or component

dtb-amd
Operating systems & Components / Operating system package or component

cluster-md-kmp-64kb
Operating systems & Components / Operating system package or component

kselftests-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

dtb-nvidia
Operating systems & Components / Operating system package or component

kselftests-kmp-64kb
Operating systems & Components / Operating system package or component

kernel-64kb-devel-debuginfo
Operating systems & Components / Operating system package or component

dtb-amlogic
Operating systems & Components / Operating system package or component

ocfs2-kmp-64kb
Operating systems & Components / Operating system package or component

dtb-qcom
Operating systems & Components / Operating system package or component

dtb-rockchip
Operating systems & Components / Operating system package or component

dtb-exynos
Operating systems & Components / Operating system package or component

dtb-lg
Operating systems & Components / Operating system package or component

kernel-64kb-optional-debuginfo
Operating systems & Components / Operating system package or component

dtb-altera
Operating systems & Components / Operating system package or component

kernel-64kb-debugsource
Operating systems & Components / Operating system package or component

dtb-amazon
Operating systems & Components / Operating system package or component

kernel-64kb-debuginfo
Operating systems & Components / Operating system package or component

gfs2-kmp-64kb
Operating systems & Components / Operating system package or component

dtb-arm
Operating systems & Components / Operating system package or component

dtb-aarch64
Operating systems & Components / Operating system package or component

kernel-zfcpdump-debugsource
Operating systems & Components / Operating system package or component

kernel-zfcpdump-debuginfo
Operating systems & Components / Operating system package or component

kernel-zfcpdump
Operating systems & Components / Operating system package or component

kernel-livepatch-5_14_21-150500_55_80-default
Operating systems & Components / Operating system package or component

kernel-livepatch-SLE15-SP5_Update_19-debugsource
Operating systems & Components / Operating system package or component

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-kvmsmall
Operating systems & Components / Operating system package or component

kernel-default
Operating systems & Components / Operating system package or component

reiserfs-kmp-default
Operating systems & Components / Operating system package or component

kernel-default-optional
Operating systems & Components / Operating system package or component

gfs2-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-extra-debuginfo
Operating systems & Components / Operating system package or component

kernel-obs-build
Operating systems & Components / Operating system package or component

kselftests-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

cluster-md-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-devel-debuginfo
Operating systems & Components / Operating system package or component

ocfs2-kmp-default
Operating systems & Components / Operating system package or component

reiserfs-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-livepatch-devel
Operating systems & Components / Operating system package or component

kselftests-kmp-default
Operating systems & Components / Operating system package or component

kernel-obs-qa
Operating systems & Components / Operating system package or component

kernel-syms
Operating systems & Components / Operating system package or component

kernel-default-extra
Operating systems & Components / Operating system package or component

dlm-kmp-default
Operating systems & Components / Operating system package or component

kernel-default-livepatch
Operating systems & Components / Operating system package or component

cluster-md-kmp-default
Operating systems & Components / Operating system package or component

kernel-default-optional-debuginfo
Operating systems & Components / Operating system package or component

kernel-obs-build-debugsource
Operating systems & Components / Operating system package or component

kernel-default-debuginfo
Operating systems & Components / Operating system package or component

ocfs2-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

dlm-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

gfs2-kmp-default
Operating systems & Components / Operating system package or component

kernel-default-debugsource
Operating systems & Components / Operating system package or component

kernel-default-devel
Operating systems & Components / Operating system package or component

kernel-default-base
Operating systems & Components / Operating system package or component

kernel-kvmsmall-devel
Operating systems & Components / Operating system package or component

kernel-kvmsmall-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-base-rebuild
Operating systems & Components / Operating system package or component

kernel-kvmsmall-debuginfo
Operating systems & Components / Operating system package or component

kernel-kvmsmall-debugsource
Operating systems & Components / Operating system package or component

kernel-kvmsmall-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-default-vdso-debuginfo
Operating systems & Components / Operating system package or component

kernel-debug-vdso-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-vdso
Operating systems & Components / Operating system package or component

kernel-debug-vdso
Operating systems & Components / Operating system package or component

kernel-kvmsmall-vdso
Operating systems & Components / Operating system package or component

kernel-kvmsmall-vdso-debuginfo
Operating systems & Components / Operating system package or component

kernel-debug-debuginfo
Operating systems & Components / Operating system package or component

kernel-debug-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-debug-debugsource
Operating systems & Components / Operating system package or component

kernel-debug-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-debug-devel
Operating systems & Components / Operating system package or component

kernel-debug
Operating systems & Components / Operating system package or component

kernel-devel
Operating systems & Components / Operating system package or component

kernel-source-vanilla
Operating systems & Components / Operating system package or component

kernel-macros
Operating systems & Components / Operating system package or component

kernel-source
Operating systems & Components / Operating system package or component

kernel-docs-html
Operating systems & Components / Operating system package or component

kernel-docs
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 296 vulnerabilities.

1) Out-of-bounds read

EUVDB-ID: #VU86247

Risk: Low

CVSSv4.0: 5.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2021-4204

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: Yes

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a boundary condition in Linux kernel eBPF. A local user trigger an out-of-bounds read error and read contents of memory on the system or crash the kernel.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

2) NULL pointer dereference

EUVDB-ID: #VU96419

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-4441

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the zynq_qspi_exec_mem_op() function in drivers/spi/spi-zynq-qspi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Use-after-free

EUVDB-ID: #VU90231

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47106

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nft_set_catchall_destroy() function in net/netfilter/nf_tables_api.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Use-after-free

EUVDB-ID: #VU90053

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47517

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ethnl_ops_begin() function in net/ethtool/netlink.h. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Memory leak

EUVDB-ID: #VU89931

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-47546

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within fib6_rule_suppress() function in net/ipv4/fib_rules.c. A remote attacker can send IPv6 packets to the system, trigger memory leak and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Out-of-bounds write

EUVDB-ID: #VU65298

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-0500

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in unrestricted eBPF usage by the BPF_BTF_LOAD in Linux kernel. A local user can trigger an out-of-bounds write error in BPF subsystem and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Security restrictions bypass

EUVDB-ID: #VU59896

Risk: Low

CVSSv4.0: 6.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2022-23222

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to availability of pointer arithmetic via certain *_OR_NULL pointer types in kernel/bpf/verifier.c in the Linux kernel. A local user can run a specially crafted program to execute arbitrary code with root privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

8) Use-after-free

EUVDB-ID: #VU80790

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-38457

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the vmw_cmd_res_check() function in drivers/gpu/vmxgfx/vmxgfx_execbuf.c. A local user can trigger a use-after-free error and crash the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Use-after-free

EUVDB-ID: #VU80794

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-40133

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the vmw_execbuf_tie_context() function in drivers/gpu/vmxgfx/vmxgfx_execbuf.c. A local user can run a specially crafted program on the system and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Use-after-free

EUVDB-ID: #VU72328

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-4382

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows an attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error within the gadgetfs Linux driver. An attacker with physical access to the system can trigger a use-after-free by manipulating the external device with gadgetfs and execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Race condition

EUVDB-ID: #VU93378

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48645

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a race condition within the enetc_vf_set_features() and enetc_vf_netdev_setup() functions in drivers/net/ethernet/freescale/enetc/enetc_vf.c, within the enetc_pf_set_features() function in drivers/net/ethernet/freescale/enetc/enetc_pf.c, within the enetc_close() and enetc_setup_tc_mqprio() functions in drivers/net/ethernet/freescale/enetc/enetc.c, within the fsl-enetc-$() function in drivers/net/ethernet/freescale/enetc/Makefile. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Memory leak

EUVDB-ID: #VU91622

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48706

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ifcvf_probe() function in drivers/vdpa/ifcvf/ifcvf_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) NULL pointer dereference

EUVDB-ID: #VU94443

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48808

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the EXPORT_SYMBOL_GPL() and dsa_switch_shutdown() functions in net/dsa/dsa2.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

14) NULL pointer dereference

EUVDB-ID: #VU94438

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48865

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the tipc_enable_bearer() function in net/tipc/bearer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

15) NULL pointer dereference

EUVDB-ID: #VU96348

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48868

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the __drv_enable_wq() function in drivers/dma/idxd/device.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

16) Use-after-free

EUVDB-ID: #VU96328

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48869

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the gadgetfs_init_fs_context() function in drivers/usb/gadget/legacy/inode.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

17) NULL pointer dereference

EUVDB-ID: #VU96357

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48870

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the spk_ttyio_release() function in drivers/accessibility/speakup/spk_ttyio.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

18) Out-of-bounds read

EUVDB-ID: #VU96338

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48871

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the get_tx_fifo_size() and qcom_geni_serial_port_setup() functions in drivers/tty/serial/qcom_geni_serial.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

19) Use-after-free

EUVDB-ID: #VU96329

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48872

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the fastrpc_map_put() function in drivers/misc/fastrpc.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

20) Use-after-free

EUVDB-ID: #VU96330

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48873

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the fastrpc_free_map(), fastrpc_buf_free() and fastrpc_device_release() functions in drivers/misc/fastrpc.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

21) Improper error handling

EUVDB-ID: #VU96364

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48875

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the drv_ampdu_action() function in net/mac80211/driver-ops.c, within the ieee80211_tx_ba_session_handle_start() function in net/mac80211/agg-tx.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

22) Use-after-free

EUVDB-ID: #VU96332

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48878

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the qca_serdev_shutdown() function in drivers/bluetooth/hci_qca.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

23) Memory leak

EUVDB-ID: #VU96370

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48880

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ssam_request_sync() function in drivers/platform/surface/aggregator/controller.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

24) Memory leak

EUVDB-ID: #VU96316

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48881

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the amd_pmc_probe() function in drivers/platform/x86/amd/pmc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

25) NULL pointer dereference

EUVDB-ID: #VU96354

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48882

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mlx5e_macsec_init_sa() function in drivers/net/ethernet/mellanox/mlx5/core/en_accel/macsec.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

26) Out-of-bounds read

EUVDB-ID: #VU96339

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48883

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the mlx5i_pkey_dev_init() function in drivers/net/ethernet/mellanox/mlx5/core/ipoib/ipoib_vlan.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

27) NULL pointer dereference

EUVDB-ID: #VU96353

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48884

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mlx5_cmd_init(), dma_pool_destroy() and mlx5_cmd_cleanup() functions in drivers/net/ethernet/mellanox/mlx5/core/cmd.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

28) Memory leak

EUVDB-ID: #VU96317

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48885

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ice_gnss_tty_write() function in drivers/net/ethernet/intel/ice/ice_gnss.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

29) NULL pointer dereference

EUVDB-ID: #VU96352

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48886

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ice_gnss_create_tty_driver() function in drivers/net/ethernet/intel/ice/ice_gnss.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

30) Improper locking

EUVDB-ID: #VU96358

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48887

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the vmw_execbuf_rcache_update(), vmw_execbuf_res_noref_val_add(), vmw_view_res_val_add(), vmw_resource_context_res_add(), vmw_cmd_res_check(), vmw_translate_mob_ptr(), vmw_translate_guest_ptr(), vmw_cmd_set_shader(), vmw_cmd_dx_set_shader(), vmw_cmd_dx_bind_shader(), vmw_cmd_dx_bind_streamoutput(), vmw_cmd_dx_set_streamoutput() and vmw_execbuf_tie_context() functions in drivers/gpu/drm/vmwgfx/vmwgfx_execbuf.c, within the vmw_user_bo_lookup() function in drivers/gpu/drm/vmwgfx/vmwgfx_bo.c, within the ttm_base_object_unref() and ttm_base_object_lookup() functions in drivers/gpu/drm/vmwgfx/ttm_object.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

31) Memory leak

EUVDB-ID: #VU96318

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48888

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the msm_mdss_parse_data_bus_icc_path() function in drivers/gpu/drm/msm/msm_mdss.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

32) Buffer overflow

EUVDB-ID: #VU96367

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48889

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the SOF_NAU8825_NUM_HDMIDEV() function in sound/soc/intel/boards/sof_nau8825.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

33) Memory leak

EUVDB-ID: #VU96319

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48890

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the storvsc_queuecommand() function in drivers/scsi/storvsc_drv.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

34) Improper locking

EUVDB-ID: #VU96359

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48891

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the da9211_i2c_probe() function in drivers/regulator/da9211-regulator.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

35) Memory leak

EUVDB-ID: #VU96320

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48893

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the intel_engines_init() function in drivers/gpu/drm/i915/gt/intel_engine_cs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

36) Memory leak

EUVDB-ID: #VU96321

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48896

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ixgbe_get_first_secondary_devfn() and ixgbe_x550em_a_has_mii() functions in drivers/net/ethernet/intel/ixgbe/ixgbe_phy.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

37) Improper locking

EUVDB-ID: #VU96360

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48898

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the dp_aux_isr() function in drivers/gpu/drm/msm/dp/dp_aux.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

38) Use-after-free

EUVDB-ID: #VU96334

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48899

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the virtio_gpu_resource_create_ioctl() function in drivers/gpu/drm/virtio/virtgpu_ioctl.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

39) Improper error handling

EUVDB-ID: #VU96440

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48903

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the btrfs_attach_transaction_barrier() function in fs/btrfs/transaction.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

40) Memory leak

EUVDB-ID: #VU96403

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48904

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the v1_free_pgtable() function in drivers/iommu/amd/io_pgtable.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

41) Memory leak

EUVDB-ID: #VU96404

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48905

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ibmvnic_reset() function in drivers/net/ethernet/ibm/ibmvnic.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

42) Out-of-bounds read

EUVDB-ID: #VU96417

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48906

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the mptcp_pending_data_fin() function in net/mptcp/protocol.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

43) Memory leak

EUVDB-ID: #VU96405

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48907

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the lcd2s_i2c_probe() function in drivers/auxdisplay/lcd2s.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

44) Memory leak

EUVDB-ID: #VU96406

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48909

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the smc_release() function in net/smc/af_smc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

45) Memory leak

EUVDB-ID: #VU96407

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48910

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the addrconf_ifdown() and addrconf_del_rs_timer() functions in net/ipv6/addrconf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

46) Use-after-free

EUVDB-ID: #VU96411

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48912

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nf_register_net_hook() function in net/netfilter/core.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

47) Use-after-free

EUVDB-ID: #VU96412

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48913

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the local_irq_restore(), put_probe_ref(), __blk_trace_remove(), do_blk_trace_setup(), blk_trace_remove_queue() and blk_trace_setup_queue() functions in kernel/trace/blktrace.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

48) NULL pointer dereference

EUVDB-ID: #VU96421

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48914

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the xennet_close(), xennet_poll_controller() and xennet_destroy_queues() functions in drivers/net/xen-netfront.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

49) NULL pointer dereference

EUVDB-ID: #VU96422

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48915

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the thermal_genl_cmd_tz_get_trip() function in drivers/thermal/thermal_netlink.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

50) Improper locking

EUVDB-ID: #VU96436

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48916

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the dmar_insert_one_dev_info() function in drivers/iommu/intel/iommu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

51) Resource management error

EUVDB-ID: #VU96442

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48917

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the snd_soc_put_volsw() function in sound/soc/soc-ops.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

52) NULL pointer dereference

EUVDB-ID: #VU96423

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48918

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the iwl_mvm_sta_add_debugfs() and iwl_mvm_dbgfs_register() functions in drivers/net/wireless/intel/iwlwifi/mvm/debugfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

53) Use-after-free

EUVDB-ID: #VU96413

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48919

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the cifs_do_mount() function in fs/cifs/cifsfs.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

54) Improper locking

EUVDB-ID: #VU96437

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48920

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the btrfs_cleanup_pending_block_groups() function in fs/btrfs/transaction.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

55) NULL pointer dereference

EUVDB-ID: #VU96424

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48921

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the tg_nop(), sched_fork(), set_user_nice(), __setscheduler_params() and sched_init() functions in kernel/sched/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

56) Buffer overflow

EUVDB-ID: #VU96443

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48923

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the lzo_decompress_bio() function in fs/btrfs/lzo.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

57) Memory leak

EUVDB-ID: #VU96408

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48924

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the int3400_notify() function in drivers/thermal/int340x_thermal/int3400_thermal.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

58) Use-after-free

EUVDB-ID: #VU96414

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48925

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the cma_bind_addr() function in drivers/infiniband/core/cma.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

59) Improper locking

EUVDB-ID: #VU96426

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48926

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the rndis_register(), rndis_free_response(), rndis_get_next_response() and rndis_add_response() functions in drivers/usb/gadget/function/rndis.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

60) Buffer overflow

EUVDB-ID: #VU96441

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48927

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the tsc2046_adc_update_scan_mode() and tsc2046_adc_setup_spi_msg() functions in drivers/iio/adc/ti-tsc2046.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

61) Memory leak

EUVDB-ID: #VU96400

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48928

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the men_z188_probe() function in drivers/iio/adc/men_z188_adc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

62) Out-of-bounds read

EUVDB-ID: #VU96415

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48929

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the btf_check_func_arg_match() function in kernel/bpf/btf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

63) Improper locking

EUVDB-ID: #VU96427

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48930

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the srp_remove_one() function in drivers/infiniband/ulp/srp/ib_srp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

64) Resource management error

EUVDB-ID: #VU96444

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48931

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the DECLARE_RWSEM(), configfs_register_subsystem() and configfs_unregister_subsystem() functions in fs/configfs/dir.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

65) Out-of-bounds read

EUVDB-ID: #VU96416

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48932

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the contain_vport_reformat_action() and mlx5_cmd_dr_create_fte() functions in drivers/net/ethernet/mellanox/mlx5/core/steering/fs_dr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

66) Memory leak

EUVDB-ID: #VU96402

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48934

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the nfp_tunnel_add_shared_mac() and kfree() functions in drivers/net/ethernet/netronome/nfp/flower/tunnel_conf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

67) Improper locking

EUVDB-ID: #VU96429

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48937

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the io_add_buffers() function in fs/io_uring.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

68) Input validation error

EUVDB-ID: #VU96438

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48938

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the cdc_ncm_rx_fixup() function in drivers/net/usb/cdc_ncm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

69) Improper locking

EUVDB-ID: #VU96430

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48939

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the generic_map_delete_batch(), generic_map_update_batch() and generic_map_lookup_batch() functions in kernel/bpf/syscall.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

70) Improper locking

EUVDB-ID: #VU96431

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48940

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the include/linux/bpf.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

71) Improper locking

EUVDB-ID: #VU96432

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48941

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ice_free_vfs(), ice_reset_all_vfs(), ice_reset_vf(), ice_process_vflr_event() and ice_vf_lan_overflow_event() functions in drivers/net/ethernet/intel/ice/ice_virtchnl_pf.c, within the ice_handle_mdd_event() function in drivers/net/ethernet/intel/ice/ice_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

72) NULL pointer dereference

EUVDB-ID: #VU96418

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48942

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the hwmon_thermal_add_sensor() function in drivers/hwmon/hwmon.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

73) Improper locking

EUVDB-ID: #VU96433

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48943

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the shadow_page_table_clear_flood() function in arch/x86/kvm/mmu/mmu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

74) Use-after-free

EUVDB-ID: #VU78779

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3610

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nf_tables component in Linux kernel netfilter. A local user with CAP_NET_ADMIN capability can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

75) NULL pointer dereference

EUVDB-ID: #VU90657

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52458

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the blkpg_do_ioctl() function in block/ioctl.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

76) Race condition

EUVDB-ID: #VU89388

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52489

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the section_deactivate() function in mm/sparse.c. A local user can exploit the race and escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

77) Improper locking

EUVDB-ID: #VU90800

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52498

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the dev_pm_skip_resume(), complete_all(), dpm_async_fn(), dpm_noirq_resume_devices(), dpm_resume_noirq(), pm_runtime_enable(), dpm_resume_early(), dpm_resume_start(), device_resume() and dpm_resume() functions in drivers/base/power/main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

78) Memory leak

EUVDB-ID: #VU89385

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52581

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform DoS attack on the target system.

The vulnerability exists due memory leak within the nft_trans_gc_space() function in net/netfilter/nf_tables_api.c. A local user can force the system to leak memory and perform denial of service attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

79) Use-after-free

EUVDB-ID: #VU90081

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52859

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the hisi_sllc_pmu_probe() function in drivers/perf/hisilicon/hisi_uncore_sllc_pmu.c, within the hisi_pa_pmu_probe() function in drivers/perf/hisilicon/hisi_uncore_pa_pmu.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

80) Improper error handling

EUVDB-ID: #VU95018

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52887

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the j1939_xtp_rx_rts_session_new() function in net/can/j1939/transport.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

81) NULL pointer dereference

EUVDB-ID: #VU96132

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52889

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the apparmor_socket_sock_rcv_skb() function in security/apparmor/lsm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

82) NULL pointer dereference

EUVDB-ID: #VU96349

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52893

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the gsmi_get_variable() function in drivers/firmware/google/gsmi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

83) NULL pointer dereference

EUVDB-ID: #VU96340

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52894

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the func_to_ncm() function in drivers/usb/gadget/function/f_ncm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

84) NULL pointer dereference

EUVDB-ID: #VU96347

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52896

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the btrfs_qgroup_rescan_worker() and mutex_unlock() functions in fs/btrfs/qgroup.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

85) NULL pointer dereference

EUVDB-ID: #VU96346

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52898

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the xhci_free_dev() function in drivers/usb/host/xhci.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

86) NULL pointer dereference

EUVDB-ID: #VU96345

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52899

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the axi_chan_handle_err() function in drivers/dma/dw-axi-dmac/dw-axi-dmac-platform.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

87) NULL pointer dereference

EUVDB-ID: #VU96344

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52900

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the __nilfs_btree_get_block() function in fs/nilfs2/btree.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

88) NULL pointer dereference

EUVDB-ID: #VU96343

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52901

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the xhci_kill_endpoint_urbs() function in drivers/usb/host/xhci-ring.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

89) NULL pointer dereference

EUVDB-ID: #VU96342

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52904

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the find_substream_format() function in sound/usb/pcm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

90) Memory leak

EUVDB-ID: #VU96324

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52905

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the otx2vf_remove() function in drivers/net/ethernet/marvell/octeontx2/nic/otx2_vf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

91) Input validation error

EUVDB-ID: #VU96362

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52906

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the valid_label() and NLA_POLICY_EXACT_LEN() functions in net/sched/act_mpls.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

92) Use-after-free

EUVDB-ID: #VU96335

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52907

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the pn533_usb_send_ack(), pn533_usb_send_frame(), pn533_acr122_poweron_rdr() and pn533_usb_probe() functions in drivers/nfc/pn533/usb.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

93) NULL pointer dereference

EUVDB-ID: #VU96341

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52908

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the amdgpu_bo_validate_size() function in drivers/gpu/drm/amd/amdgpu/amdgpu_object.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

94) Memory leak

EUVDB-ID: #VU96325

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52909

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the nfs4_get_vfs_file() function in fs/nfsd/nfs4state.c, within the nfsd_file_is_cached(), nfserrno(), put_cred(), nfsd_file_acquire_gc() and nfsd_file_acquire() functions in fs/nfsd/filecache.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

95) Buffer overflow

EUVDB-ID: #VU96366

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52910

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the __alloc_and_insert_iova_range() function in drivers/iommu/iova.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

96) Use-after-free

EUVDB-ID: #VU96336

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52911

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the msm_drv_shutdown() function in drivers/gpu/drm/msm/msm_drv.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

97) Reachable assertion

EUVDB-ID: #VU96363

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52912

CWE-ID: CWE-617 - Reachable Assertion

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to reachable assertion within the amdgpu_vram_mgr_fini() function in drivers/gpu/drm/amd/amdgpu/amdgpu_vram_mgr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

98) Use-after-free

EUVDB-ID: #VU96337

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52913

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the i915_gem_init__contexts(), gem_context_register() and finalize_create_context_locked() functions in drivers/gpu/drm/i915/gem/i915_gem_context.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

99) Race condition within a thread

EUVDB-ID: #VU91436

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26631

CWE-ID: CWE-366 - Race Condition within a Thread

Exploit availability: No

Description

The vulnerability allows a local user to manipulate data.

The vulnerability exists due to a data race within the ipv6_mc_down() function in net/ipv6/mcast.c. A local user can manipulate data.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

100) Integer overflow

EUVDB-ID: #VU91180

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26668

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer overflow within the nft_limit_eval() and nft_limit_init() functions in net/netfilter/nft_limit.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

101) Memory leak

EUVDB-ID: #VU90010

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26669

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the fl_tmplt_destroy() function in net/sched/cls_flower.c, within the tcf_block_playback_offloads() and tc_chain_tmplt_add() functions in net/sched/cls_api.c, within the void() function in include/net/sch_generic.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

102) Input validation error

EUVDB-ID: #VU94139

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26677

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the rxrpc_propose_delay_ACK(), rxrpc_send_initial_ping() and rxrpc_input_call_event() functions in net/rxrpc/call_event.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

103) Use-after-free

EUVDB-ID: #VU90215

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26735

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the seg6_init() function in net/ipv6/seg6.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

104) Expired pointer dereference

EUVDB-ID: #VU93809

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26808

CWE-ID: CWE-825 - Expired pointer dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a stale reference within the nf_tables_netdev_event() function in net/netfilter/nft_chain_filter.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

105) Improper locking

EUVDB-ID: #VU91529

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26812

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the vfio_send_intx_eventfd(), vfio_intx_handler() and vfio_pci_set_intx_trigger() functions in drivers/vfio/pci/vfio_pci_intrs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

106) Resource management error

EUVDB-ID: #VU93772

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26835

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the nf_tables_updtable() function in net/netfilter/nf_tables_api.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

107) Out-of-bounds read

EUVDB-ID: #VU91096

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26851

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the decode_seq() function in net/netfilter/nf_conntrack_h323_asn1.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

108) Improper locking

EUVDB-ID: #VU90769

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27010

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the qdisc_alloc() function in net/sched/sch_generic.c, within the qdisc_run_end() function in net/core/dev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

109) Memory leak

EUVDB-ID: #VU90463

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27011

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the nft_data_hold() and __nf_tables_abort() functions in net/netfilter/nf_tables_api.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

110) Input validation error

EUVDB-ID: #VU94131

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27016

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the nf_flow_xmit_xfrm(), nf_flow_skb_encap_protocol() and nf_flow_encap_pop() functions in net/netfilter/nf_flow_table_ip.c, within the nf_flow_offload_inet_hook() function in net/netfilter/nf_flow_table_inet.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

111) Resource management error

EUVDB-ID: #VU93841

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27024

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the rds_sendmsg() function in net/rds/send.c, within the __rds_rdma_map() function in net/rds/rdma.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

112) NULL pointer dereference

EUVDB-ID: #VU90518

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27079

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the intel_pasid_setup_nested() function in drivers/iommu/intel/pasid.c, within the domain_context_clear() and intel_iommu_release_device() functions in drivers/iommu/intel/iommu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

113) Integer underflow

EUVDB-ID: #VU91669

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27403

CWE-ID: CWE-191 - Integer underflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer underflow within the flow_offload_dst_cookie() and nft_flow_dst_release() functions in net/netfilter/nf_flow_table_core.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

114) Memory leak

EUVDB-ID: #VU93016

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-31076

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the migrate_one_irq() function in kernel/irq/cpuhotplug.c, within the __send_cleanup_vector(), irq_complete_move() and irq_force_complete_move() functions in arch/x86/kernel/apic/vector.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

115) Resource management error

EUVDB-ID: #VU93269

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35897

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the nf_tables_table_disable() and nf_tables_updtable() functions in net/netfilter/nf_tables_api.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

116) NULL pointer dereference

EUVDB-ID: #VU91234

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35902

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the __rds_rdma_map() function in net/rds/rdma.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

117) Improper error handling

EUVDB-ID: #VU92056

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35945

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the phy_sfp_probe(), phy_attach_direct() and phy_get_internal_delay() functions in drivers/net/phy/phy_device.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

118) Improper locking

EUVDB-ID: #VU91444

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35971

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ks8851_rx_pkts() and ks8851_irq() functions in drivers/net/ethernet/micrel/ks8851_common.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

119) Incorrect calculation

EUVDB-ID: #VU93754

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36009

CWE-ID: CWE-682 - Incorrect Calculation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect calculation within the net/ax25/af_ax25.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

120) Use-after-free

EUVDB-ID: #VU90057

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36013

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the l2cap_command_rej(), l2cap_connect() and l2cap_chan_unlock() functions in net/bluetooth/l2cap_core.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

121) NULL pointer dereference

EUVDB-ID: #VU93028

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36270

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the nf_tproxy_laddr4() function in net/ipv4/netfilter/nf_tproxy_ipv4.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

122) Improper locking

EUVDB-ID: #VU93036

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36286

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the instance_destroy_rcu() function in net/netfilter/nfnetlink_queue.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

123) NULL pointer dereference

EUVDB-ID: #VU93030

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36489

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the tls_ctx_create() function in net/tls/tls_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

124) Improper error handling

EUVDB-ID: #VU93449

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36929

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the skb_alloc_rx_flag() and skb_copy_expand() functions in net/core/skbuff.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

125) Use of uninitialized resource

EUVDB-ID: #VU90862

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36933

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the EXPORT_SYMBOL_GPL() and nsh_gso_segment() functions in net/nsh/nsh.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

126) Improper locking

EUVDB-ID: #VU91441

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36936

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the list_del() function in drivers/firmware/efi/unaccepted_memory.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

127) Improper locking

EUVDB-ID: #VU91440

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36962

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ks8851_dbg_dumpkkt(), ks8851_rx_pkts() and ks8851_irq() functions in drivers/net/ethernet/micrel/ks8851_common.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

128) Memory leak

EUVDB-ID: #VU92294

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38554

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ax25_dev_device_down() function in net/ax25/ax25_dev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

129) Memory leak

EUVDB-ID: #VU92296

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38602

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the ax25_addr_ax25dev(), ax25_dev_device_up() and ax25_dev_device_down() functions in net/ax25/ax25_dev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

130) Improper locking

EUVDB-ID: #VU93033

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38662

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the may_update_sockmap() and check_map_func_compatibility() functions in kernel/bpf/verifier.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

131) Memory leak

EUVDB-ID: #VU94084

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39489

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the seg6_hmac_init_algo() and seg6_hmac_net_init() functions in net/ipv6/seg6_hmac.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

132) NULL pointer dereference

EUVDB-ID: #VU94257

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40905

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the rt6_get_pcpu_route() function in net/ipv6/route.c, within the __fib6_drop_pcpu_from() function in net/ipv6/ip6_fib.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

133) Resource management error

EUVDB-ID: #VU94299

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40978

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the qedi_dbg_do_not_recover_cmd_read() function in drivers/scsi/qedi/qedi_debugfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

134) Improper locking

EUVDB-ID: #VU94270

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40980

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the reset_per_cpu_data(), trace_drop_common(), net_dm_hw_reset_per_cpu_data(), net_dm_hw_summary_probe() and __net_dm_cpu_data_init() functions in net/core/drop_monitor.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

135) Improper locking

EUVDB-ID: #VU94267

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40995

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the tcf_idr_check_alloc() and rcu_read_unlock() functions in net/sched/act_api.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

136) Integer overflow

EUVDB-ID: #VU94295

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41000

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer overflow within the blkpg_do_ioctl() function in block/ioctl.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

137) Resource management error

EUVDB-ID: #VU94345

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41007

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the tcp_rtx_probe0_timed_out() function in net/ipv4/tcp_timer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

138) Input validation error

EUVDB-ID: #VU94508

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41009

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the __aligned(), bpf_ringbuf_alloc(), bpf_ringbuf_restore_from_rec() and __bpf_ringbuf_reserve() functions in kernel/bpf/ringbuf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

139) Input validation error

EUVDB-ID: #VU94530

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41011

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the kfd_ioctl_alloc_memory_of_gpu(), criu_restore_memory_of_gpu() and kfd_mmio_mmap() functions in drivers/gpu/drm/amd/amdkfd/kfd_chardev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

140) Out-of-bounds read

EUVDB-ID: #VU94837

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41016

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the ocfs2_xattr_find_entry() function in fs/ocfs2/xattr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

141) Improper locking

EUVDB-ID: #VU94996

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41020

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the fcntl_setlk64() function in fs/locks.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

142) Improper error handling

EUVDB-ID: #VU95022

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41022

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the sdma_v4_0_process_trap_irq() function in drivers/gpu/drm/amd/amdgpu/sdma_v4_0.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

143) Input validation error

EUVDB-ID: #VU95109

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41035

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the usb_parse_endpoint() function in drivers/usb/core/config.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

144) Improper locking

EUVDB-ID: #VU94995

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41036

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ks8851_tx_work() function in drivers/net/ethernet/micrel/ks8851_spi.c, within the ks8851_irq() and ks8851_set_rx_mode() functions in drivers/net/ethernet/micrel/ks8851_common.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

145) Buffer overflow

EUVDB-ID: #VU95048

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41038

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the cs_dsp_coeff_parse_string(), cs_dsp_coeff_parse_int(), cs_dsp_coeff_parse_coeff() and cs_dsp_parse_coeff() functions in drivers/firmware/cirrus/cs_dsp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

146) Buffer overflow

EUVDB-ID: #VU95042

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41039

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the cs_dsp_adsp1_parse_sizes(), cs_dsp_adsp2_parse_sizes(), cs_dsp_load() and cs_dsp_buf_free() functions in drivers/firmware/cirrus/cs_dsp.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

147) Input validation error

EUVDB-ID: #VU95003

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41042

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the nf_tables_rule_release(), nft_chain_validate(), nft_chain_validate_hooks() and nft_validate_register_store() functions in net/netfilter/nf_tables_api.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

148) Use-after-free

EUVDB-ID: #VU94948

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41045

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the bpf_timer_delete_work(), __bpf_async_init() and __bpf_spin_unlock_irqrestore() functions in kernel/bpf/helpers.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

149) Input validation error

EUVDB-ID: #VU95107

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41056

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the cs_dsp_coeff_parse_alg() and cs_dsp_coeff_parse_coeff() functions in drivers/firmware/cirrus/cs_dsp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

150) NULL pointer dereference

EUVDB-ID: #VU94978

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41060

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the radeon_gem_va_update_vm() function in drivers/gpu/drm/radeon/radeon_gem.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

151) NULL pointer dereference

EUVDB-ID: #VU94977

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41062

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the l2cap_sock_kill(), l2cap_sock_new_connection_cb() and l2cap_sock_recv_cb() functions in net/bluetooth/l2cap_sock.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

152) Memory leak

EUVDB-ID: #VU94926

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41065

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the alloc_dispatch_log_kmem_cache() function in arch/powerpc/platforms/pseries/setup.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

153) Resource management error

EUVDB-ID: #VU95072

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41068

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the sclp_init() function in drivers/s390/char/sclp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

154) Double free

EUVDB-ID: #VU95011

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41073

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the nvme_cleanup_cmd() function in drivers/nvme/host/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

155) Memory leak

EUVDB-ID: #VU94930

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41079

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the nvmet_execute_admin_connect() and nvmet_execute_io_connect() functions in drivers/nvme/target/fabrics-cmd.c, within the pr_debug() and nvmet_execute_auth_receive() functions in drivers/nvme/target/fabrics-cmd-auth.c, within the nvmet_req_init() function in drivers/nvme/target/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

156) Improper locking

EUVDB-ID: #VU94990

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41080

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the io_register_iowq_max_workers() function in io_uring/register.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

157) Double free

EUVDB-ID: #VU95008

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41087

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the ata_host_alloc() function in drivers/ata/libata-core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

158) Improper locking

EUVDB-ID: #VU94989

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41088

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the mcp251xfd_tx_obj_from_skb(), mcp251xfd_tx_busy() and mcp251xfd_start_xmit() functions in drivers/net/can/spi/mcp251xfd/mcp251xfd-tx.c, within the mcp251xfd_open() and mcp251xfd_stop() functions in drivers/net/can/spi/mcp251xfd/mcp251xfd-core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

159) NULL pointer dereference

EUVDB-ID: #VU94971

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41089

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the nv17_tv_get_hd_modes() function in drivers/gpu/drm/nouveau/dispnv04/tvnv17.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

160) Use-after-free

EUVDB-ID: #VU94938

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41092

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the i915_vma_revoke_fence() function in drivers/gpu/drm/i915/gt/intel_ggtt_fencing.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

161) Improper error handling

EUVDB-ID: #VU95019

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41093

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the amdgpu_vkms_prepare_fb() and amdgpu_vkms_cleanup_fb() functions in drivers/gpu/drm/amd/amdgpu/amdgpu_vkms.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

162) NULL pointer dereference

EUVDB-ID: #VU94966

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41095

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the nv17_tv_get_ld_modes() function in drivers/gpu/drm/nouveau/dispnv04/tvnv17.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

163) Resource management error

EUVDB-ID: #VU95067

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41097

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the cxacru_bind() function in drivers/usb/atm/cxacru.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

164) NULL pointer dereference

EUVDB-ID: #VU94970

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-41098

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ata_host_release() function in drivers/ata/libata-core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

165) Double free

EUVDB-ID: #VU95009

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42069

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the add_adev() function in drivers/net/ethernet/microsoft/mana/mana_en.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

166) NULL pointer dereference

EUVDB-ID: #VU94969

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42074

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the snd_acp_resume() function in sound/soc/amd/acp/acp-pci.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

167) Use of uninitialized resource

EUVDB-ID: #VU95031

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42076

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the MODULE_ALIAS() and j1939_send_one() functions in net/can/j1939/main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

168) Resource management error

EUVDB-ID: #VU95068

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42077

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ocfs2_extend_trans() function in fs/ocfs2/journal.c, within the ocfs2_dio_end_io_write() function in fs/ocfs2/aops.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

169) Input validation error

EUVDB-ID: #VU95103

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42080

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the rdma_restrack_init() and type2str() functions in drivers/infiniband/core/restrack.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

170) Buffer overflow

EUVDB-ID: #VU95055

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42082

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the __xdp_reg_mem_model() function in net/core/xdp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

171) NULL pointer dereference

EUVDB-ID: #VU94965

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42085

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dwc3_suspend_common() and dwc3_resume_common() functions in drivers/usb/dwc3/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

172) Buffer overflow

EUVDB-ID: #VU95041

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42086

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the bme680_compensate_temp(), bme680_compensate_press() and bme680_compensate_humid() functions in drivers/iio/chemical/bme680_core.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

173) Resource management error

EUVDB-ID: #VU95066

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42087

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ili9881c_prepare() and ili9881c_unprepare() functions in drivers/gpu/drm/panel/panel-ilitek-ili9881c.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

174) NULL pointer dereference

EUVDB-ID: #VU94964

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42089

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the fsl_asoc_card_probe() function in sound/soc/fsl/fsl-asoc-card.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

175) Improper locking

EUVDB-ID: #VU94988

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42090

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the create_pinctrl() function in drivers/pinctrl/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

176) Input validation error

EUVDB-ID: #VU95000

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42092

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the davinci_gpio_probe() function in drivers/gpio/gpio-davinci.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

177) Input validation error

EUVDB-ID: #VU95101

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42095

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the uart_write() and omap8250_irq() functions in drivers/tty/serial/8250/8250_omap.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

178) Input validation error

EUVDB-ID: #VU95001

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42097

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the load_data() and load_guspatch() functions in sound/synth/emux/soundfont.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

179) Input validation error

EUVDB-ID: #VU95100

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42098

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ecdh_set_secret() function in crypto/ecdh.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

180) NULL pointer dereference

EUVDB-ID: #VU94963

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42101

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the nouveau_connector_get_modes() function in drivers/gpu/drm/nouveau/nouveau_connector.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

181) Use-after-free

EUVDB-ID: #VU94937

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42104

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nilfs_check_page() and nilfs_error() functions in fs/nilfs2/dir.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

182) Use of uninitialized resource

EUVDB-ID: #VU95024

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42106

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the inet_diag_dump_compat() and inet_diag_get_exact_compat() functions in net/ipv4/inet_diag.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

183) NULL pointer dereference

EUVDB-ID: #VU94962

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42107

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ice_ptp_extts_event() function in drivers/net/ethernet/intel/ice/ice_ptp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

184) Resource management error

EUVDB-ID: #VU95050

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42110

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ntb_netdev_rx_handler() function in drivers/net/ntb_netdev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

185) Improper locking

EUVDB-ID: #VU94986

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42114

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the NLA_POLICY_FULL_RANGE() function in net/wireless/nl80211.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

186) Use-after-free

EUVDB-ID: #VU94932

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42115

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the jffs2_i_init_once() function in fs/jffs2/super.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

187) Improper error handling

EUVDB-ID: #VU95015

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42119

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the find_first_free_audio() function in drivers/gpu/drm/amd/display/dc/core/dc_resource.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

188) Input validation error

EUVDB-ID: #VU95099

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42120

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the dce110_vblank_set() function in drivers/gpu/drm/amd/display/dc/irq/dce110/irq_service_dce110.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

189) Input validation error

EUVDB-ID: #VU95098

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42121

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the read() and write() functions in drivers/gpu/drm/amd/display/modules/hdcp/hdcp_ddc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

190) Input validation error

EUVDB-ID: #VU94997

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42126

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the pcpu_cpu_to_node() and setup_per_cpu_areas() functions in arch/powerpc/kernel/setup_64.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

191) Improper error handling

EUVDB-ID: #VU95014

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42127

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the lima_pp_init() and lima_pp_bcast_init() functions in drivers/gpu/drm/lima/lima_pp.c, within the lima_mmu_init() function in drivers/gpu/drm/lima/lima_mmu.c, within the lima_gp_init() function in drivers/gpu/drm/lima/lima_gp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

192) Incorrect calculation

EUVDB-ID: #VU95075

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42130

CWE-ID: CWE-682 - Incorrect Calculation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect calculation within the virtual_ncidev_write() function in drivers/nfc/virtual_ncidev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

193) Use-after-free

EUVDB-ID: #VU94931

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42137

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the qca_serdev_shutdown() function in drivers/bluetooth/hci_qca.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

194) Input validation error

EUVDB-ID: #VU95082

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42139

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ice_ptp_extts_event(), ice_ptp_cfg_extts(), ice_ptp_gpio_enable_e810(), ice_ptp_gpio_enable_e823(), ice_ptp_rebuild_owner() and ice_ptp_release() functions in drivers/net/ethernet/intel/ice/ice_ptp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

195) Input validation error

EUVDB-ID: #VU95083

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42142

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the acl_ingress_ofld_setup(), esw_acl_ingress_src_port_drop_create(), esw_acl_ingress_ofld_groups_destroy() and esw_acl_ingress_ofld_setup() functions in drivers/net/ethernet/mellanox/mlx5/core/esw/acl/ingress_ofld.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

196) Out-of-bounds read

EUVDB-ID: #VU94951

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42143

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the orangefs_statfs() function in fs/orangefs/super.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

197) Out-of-bounds read

EUVDB-ID: #VU94952

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42148

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the drivers/net/ethernet/broadcom/bnx2x/bnx2x.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

198) Memory leak

EUVDB-ID: #VU94922

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42152

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the nvmet_sq_destroy() function in drivers/nvme/target/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

199) Input validation error

EUVDB-ID: #VU95092

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42155

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the pkey_unlocked_ioctl() function in drivers/s390/crypto/pkey_api.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

200) Input validation error

EUVDB-ID: #VU95091

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42156

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the pkey_unlocked_ioctl() function in drivers/s390/crypto/pkey_api.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

201) Input validation error

EUVDB-ID: #VU95090

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42157

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the pkey_unlocked_ioctl() function in drivers/s390/crypto/pkey_api.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

202) Resource management error

EUVDB-ID: #VU95064

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42158

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the pkey_unlocked_ioctl() function in drivers/s390/crypto/pkey_api.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

203) Incorrect calculation

EUVDB-ID: #VU95074

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42162

CWE-ID: CWE-682 - Incorrect Calculation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect calculation within the gve_get_drvinfo() and gve_get_ethtool_stats() functions in drivers/net/ethernet/google/gve/gve_ethtool.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

204) Integer overflow

EUVDB-ID: #VU95037

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42223

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer overflow within the tda10048_set_if() function in drivers/media/dvb-frontends/tda10048.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

205) Use of uninitialized resource

EUVDB-ID: #VU95028

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42225

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the mt7915_mcu_add_nested_subtlv() function in drivers/net/wireless/mediatek/mt76/mt7915/mcu.c, within the mt76_connac_mcu_add_nested_tlv(), mt76_connac_mcu_hw_scan(), mt76_connac_mcu_sched_scan_req(), mt76_connac_mcu_update_gtk_rekey() and mt76_connac_mcu_set_wow_pattern() functions in drivers/net/wireless/mediatek/mt76/mt76_connac_mcu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

206) Use of uninitialized resource

EUVDB-ID: #VU95029

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42228

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the amdgpu_vce_ring_parse_cs() function in drivers/gpu/drm/amd/amdgpu/amdgpu_vce.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

207) Buffer overflow

EUVDB-ID: #VU95078

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42229

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the setkey_unaligned() function in crypto/cipher.c, within the setkey_unaligned() function in crypto/aead.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

208) Resource management error

EUVDB-ID: #VU95062

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42230

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the define_machine() function in arch/powerpc/platforms/pseries/setup.c, within the pseries_kexec_cpu_down() function in arch/powerpc/platforms/pseries/kexec.c, within the default_machine_kexec() function in arch/powerpc/kexec/core_64.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

209) Use-after-free

EUVDB-ID: #VU95503

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42232

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the delayed_work() and EXPORT_SYMBOL() functions in net/ceph/mon_client.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

210) Memory leak

EUVDB-ID: #VU95502

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42236

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the usb_string_copy() function in drivers/usb/gadget/configfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

211) Infinite loop

EUVDB-ID: #VU95513

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42237

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the cs_dsp_load(), cs_dsp_load_coeff() and regmap_async_complete() functions in drivers/firmware/cirrus/cs_dsp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

212) Infinite loop

EUVDB-ID: #VU95514

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42238

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the cs_dsp_load() and cs_dsp_load_coeff() functions in drivers/firmware/cirrus/cs_dsp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

213) Improper locking

EUVDB-ID: #VU95507

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42239

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the __bpf_async_init(), drop_prog_refcnt(), BPF_CALL_1() and hrtimer_cancel() functions in kernel/bpf/helpers.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

214) Buffer overflow

EUVDB-ID: #VU95516

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42240

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the SYM_INNER_LABEL() function in arch/x86/entry/entry_64_compat.S. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

215) Input validation error

EUVDB-ID: #VU95510

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42244

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the mos7840_port_remove() function in drivers/usb/serial/mos7840.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

216) Infinite loop

EUVDB-ID: #VU95515

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42246

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the xs_tcp_setup_socket() function in net/sunrpc/xprtsock.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

217) Resource management error

EUVDB-ID: #VU95518

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42247

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the swap_endian() function in drivers/net/wireguard/allowedips.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

218) Improper locking

EUVDB-ID: #VU96159

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42268

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the mlx5_fw_reset_set_live_patch() and mlx5_fw_reset_complete_reload() functions in drivers/net/ethernet/mellanox/mlx5/core/fw_reset.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

219) Use-after-free

EUVDB-ID: #VU96105

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42271

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the iucv_sever_path() function in net/iucv/af_iucv.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

220) Improper locking

EUVDB-ID: #VU96158

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42274

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the update_pcm_pointers() and amdtp_domain_stream_pcm_pointer() functions in sound/firewire/amdtp-stream.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

221) Input validation error

EUVDB-ID: #VU96205

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42276

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the nvme_prep_rq() function in drivers/nvme/host/pci.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

222) NULL pointer dereference

EUVDB-ID: #VU96144

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42277

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the sprd_iommu_cleanup() function in drivers/iommu/sprd-iommu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

223) Use-after-free

EUVDB-ID: #VU96106

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42280

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the hfcmulti_dtmf() and HFC_wait_nodebug() functions in drivers/isdn/hardware/mISDN/hfcmulti.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

224) Input validation error

EUVDB-ID: #VU96206

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42281

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the bpf_skb_net_grow() function in net/core/filter.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

225) Memory leak

EUVDB-ID: #VU96195

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42283

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the nla_put_nh_group() function in net/ipv4/nexthop.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

226) Buffer overflow

EUVDB-ID: #VU96176

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42284

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the tipc_udp_addr2str() function in net/tipc/udp_media.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

227) Use-after-free

EUVDB-ID: #VU96107

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42285

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the EXPORT_SYMBOL(), destroy_cm_id() and cm_work_handler() functions in drivers/infiniband/core/iwcm.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

228) NULL pointer dereference

EUVDB-ID: #VU96141

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42286

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the qla_nvme_register_remote() function in drivers/scsi/qla2xxx/qla_nvme.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

229) NULL pointer dereference

EUVDB-ID: #VU96140

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42287

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the __qla2x00_abort_all_cmds() function in drivers/scsi/qla2xxx/qla_os.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

230) Buffer overflow

EUVDB-ID: #VU96177

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42288

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the qla2x00_number_of_exch() function in drivers/scsi/qla2xxx/qla_os.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

231) NULL pointer dereference

EUVDB-ID: #VU96139

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42289

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the qla24xx_disable_vp() function in drivers/scsi/qla2xxx/qla_mid.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

232) Input validation error

EUVDB-ID: #VU96207

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42291

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ice_vc_fdir_reset_cnt_all(), ice_vc_add_fdir_fltr_post(), ice_vc_del_fdir_fltr_post() and ice_vc_add_fdir_fltr() functions in drivers/net/ethernet/intel/ice/ice_virtchnl_fdir.c, within the ice_parse_rx_flow_user_data() function in drivers/net/ethernet/intel/ice/ice_ethtool_fdir.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

233) Out-of-bounds read

EUVDB-ID: #VU96114

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42292

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the zap_modalias_env() function in lib/kobject_uevent.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

234) Improper error handling

EUVDB-ID: #VU96166

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42295

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the nilfs_btree_get_new_block() function in fs/nilfs2/btree.c, within the nilfs_btnode_create_block() function in fs/nilfs2/btnode.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

235) Out-of-bounds read

EUVDB-ID: #VU96116

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42301

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the do_active_device(), do_autoprobe(), do_hardware_base_addr(), do_hardware_irq(), do_hardware_dma() and do_hardware_modes() functions in drivers/parport/procfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

236) Use-after-free

EUVDB-ID: #VU96108

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42302

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the pci_bus_max_d3cold_delay() and pci_bridge_wait_for_secondary_bus() functions in drivers/pci/pci.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

237) NULL pointer dereference

EUVDB-ID: #VU96136

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42308

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dc_plane_get_status() function in drivers/gpu/drm/amd/display/dc/core/dc_surface.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

238) NULL pointer dereference

EUVDB-ID: #VU96135

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42309

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the psb_intel_lvds_get_modes() function in drivers/gpu/drm/gma500/psb_intel_lvds.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

239) NULL pointer dereference

EUVDB-ID: #VU96134

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42310

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the cdv_intel_lvds_get_modes() function in drivers/gpu/drm/gma500/cdv_intel_lvds.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

240) Use of uninitialized resource

EUVDB-ID: #VU96172

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42311

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the hfs_new_inode() and hfs_inode_read_fork() functions in fs/hfs/inode.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

241) Input validation error

EUVDB-ID: #VU96209

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42312

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the proc_sys_make_inode() function in fs/proc/proc_sysctl.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

242) Use-after-free

EUVDB-ID: #VU96109

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42313

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the vdec_close() function in drivers/media/platform/qcom/venus/vdec.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

243) Improper locking

EUVDB-ID: #VU96152

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42315

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the exfat_get_dentry_set() function in fs/exfat/dir.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

244) Input validation error

EUVDB-ID: #VU96210

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42318

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the hook_cred_prepare() and hook_cred_free() functions in security/landlock/cred.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

245) Resource management error

EUVDB-ID: #VU96190

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42319

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the cmdq_probe() function in drivers/mailbox/mtk-cmdq-mailbox.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

246) NULL pointer dereference

EUVDB-ID: #VU96133

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42320

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dasd_copy_pair_store() function in drivers/s390/block/dasd_devmap.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

247) Resource management error

EUVDB-ID: #VU96189

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42322

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ip_vs_add_service() function in net/netfilter/ipvs/ip_vs_ctl.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

248) NULL pointer dereference

EUVDB-ID: #VU96117

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43816

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the lpfc_prep_embed_io() function in drivers/scsi/lpfc/lpfc_sli.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

249) NULL pointer dereference

EUVDB-ID: #VU96131

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43818

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the st_es8336_late_probe() function in sound/soc/amd/acp-es8336.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

250) NULL pointer dereference

EUVDB-ID: #VU96130

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43819

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the kvm_arch_prepare_memory_region() function in arch/s390/kvm/kvm-s390.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

251) NULL pointer dereference

EUVDB-ID: #VU96129

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43821

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the lpfc_xcvr_data_show() function in drivers/scsi/lpfc/lpfc_attr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

252) NULL pointer dereference

EUVDB-ID: #VU96127

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43823

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ks_pcie_setup_rc_app_regs() and ks_pcie_host_init() functions in drivers/pci/controller/dwc/pci-keystone.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

253) NULL pointer dereference

EUVDB-ID: #VU96124

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43829

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the qxl_add_mode() function in drivers/gpu/drm/qxl/qxl_display.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

254) Double free

EUVDB-ID: #VU96162

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43830

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the led_trigger_set() function in drivers/leds/led-triggers.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

255) Input validation error

EUVDB-ID: #VU96196

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43831

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the vpu_dec_init() function in drivers/media/platform/mediatek/vcodec/decoder/vdec_vpu_if.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

256) Use-after-free

EUVDB-ID: #VU96103

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43834

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the xdp_unreg_mem_model() function in net/core/xdp.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

257) NULL pointer dereference

EUVDB-ID: #VU96121

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43837

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the include/linux/bpf_verifier.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

258) Input validation error

EUVDB-ID: #VU96197

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43839

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the bnad_tx_msix_register() and bnad_rx_msix_register() functions in drivers/net/ethernet/brocade/bna/bnad.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

259) Resource management error

EUVDB-ID: #VU96187

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43841

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the virt_wifi_inform_bss(), virt_wifi_connect() and virt_wifi_connect_complete() functions in drivers/net/wireless/virt_wifi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

260) Input validation error

EUVDB-ID: #VU96198

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43842

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the rtw89_sta_info_get_iter() function in drivers/net/wireless/realtek/rtw89/debug.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

261) Resource management error

EUVDB-ID: #VU96186

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43846

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the objagg_obj_parent_assign() function in lib/objagg.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

262) Input validation error

EUVDB-ID: #VU96200

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43849

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the pdr_locator_new_server(), pdr_locator_del_server() and pdr_get_domain_list() functions in drivers/soc/qcom/pdr_interface.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

263) Use-after-free

EUVDB-ID: #VU96104

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43853

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the proc_cpuset_show() function in kernel/cgroup/cpuset.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

264) Memory leak

EUVDB-ID: #VU96099

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43854

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the bio_integrity_prep() function in block/bio-integrity.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

265) Buffer overflow

EUVDB-ID: #VU96191

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43856

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the dmam_free_coherent() function in kernel/dma/mapping.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

266) Out-of-bounds read

EUVDB-ID: #VU96113

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43858

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the diSync() and diRead() functions in fs/jfs/jfs_imap.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

267) NULL pointer dereference

EUVDB-ID: #VU96118

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43860

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the imx_rproc_addr_init() function in drivers/remoteproc/imx_rproc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

268) Memory leak

EUVDB-ID: #VU96290

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43861

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the qmimux_rx_fixup() function in drivers/net/usb/qmi_wwan.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

269) Improper locking

EUVDB-ID: #VU96297

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43863

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the vmw_fence_obj_destroy(), vmw_fence_obj_init() and vmw_fence_goal_new_locked() functions in drivers/gpu/drm/vmwgfx/vmwgfx_fence.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

270) NULL pointer dereference

EUVDB-ID: #VU96293

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43866

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mlx5_sf_dev_shutdown() function in drivers/net/ethernet/mellanox/mlx5/core/sf/dev/driver.c, within the mlx5_try_fast_unload() and shutdown() functions in drivers/net/ethernet/mellanox/mlx5/core/main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

271) Integer underflow

EUVDB-ID: #VU96301

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43867

CWE-ID: CWE-191 - Integer underflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer underflow within the nouveau_gem_prime_import_sg_table() function in drivers/gpu/drm/nouveau/nouveau_prime.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

272) Memory leak

EUVDB-ID: #VU96287

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43871

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the EXPORT_SYMBOL_GPL() function in drivers/base/devres.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

273) Improper locking

EUVDB-ID: #VU96294

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43872

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the next_ceqe_sw_v2(), hns_roce_v2_msix_interrupt_eq(), hns_roce_ceq_work(), __hns_roce_request_irq() and __hns_roce_free_irq() functions in drivers/infiniband/hw/hns/hns_roce_hw_v2.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

274) Use of uninitialized resource

EUVDB-ID: #VU96300

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43873

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the vhost_vsock_dev_open() and vhost_vsock_set_features() functions in drivers/vhost/vsock.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

275) Resource management error

EUVDB-ID: #VU96304

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43879

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the cfg80211_calculate_bitrate_he() function in net/wireless/util.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

276) Resource management error

EUVDB-ID: #VU96305

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43880

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the objagg_hints_obj_cmp() and objagg_hints_get() functions in lib/objagg.c, within the mlxsw_sp_acl_erp_delta_check() and mlxsw_sp_acl_erp_root_destroy() functions in drivers/net/ethernet/mellanox/mlxsw/spectrum_acl_erp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

277) Improper locking

EUVDB-ID: #VU96295

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43882

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the bprm_fill_uid() function in fs/exec.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

278) Input validation error

EUVDB-ID: #VU96493

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43883

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the vhci_urb_enqueue(), vhci_shutdown_connection() and vhci_device_reset() functions in drivers/usb/usbip/vhci_hcd.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

279) NULL pointer dereference

EUVDB-ID: #VU96538

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43884

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the pair_device() function in net/bluetooth/mgmt.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

280) Division by zero

EUVDB-ID: #VU96545

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43889

CWE-ID: CWE-369 - Divide By Zero

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a division by zero error within the padata_do_multithreaded() function in kernel/padata.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

281) Race condition

EUVDB-ID: #VU96546

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43892

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the MEM_CGROUP_ID_MAX(), mem_cgroup_alloc() and mem_cgroup_css_online() functions in mm/memcontrol.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

282) Improper locking

EUVDB-ID: #VU96540

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43893

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the uart_set_info() function in drivers/tty/serial/serial_core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

283) NULL pointer dereference

EUVDB-ID: #VU96536

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43894

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the drm_client_modeset_probe() function in drivers/gpu/drm/drm_client_modeset.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

284) NULL pointer dereference

EUVDB-ID: #VU96535

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43895

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the is_dsc_need_re_compute() function in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_mst_types.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

285) NULL pointer dereference

EUVDB-ID: #VU96532

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43899

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn20_get_dcc_compression_cap() function in drivers/gpu/drm/amd/display/dc/resource/dcn20/dcn20_resource.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

286) Use-after-free

EUVDB-ID: #VU96515

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43900

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the load_firmware_cb() function in drivers/media/tuners/xc2028.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

287) NULL pointer dereference

EUVDB-ID: #VU96530

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43902

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dm_suspend(), create_eml_sink() and amdgpu_dm_connector_get_modes() functions in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

288) NULL pointer dereference

EUVDB-ID: #VU96520

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43903

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the handle_cursor_update() function in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_plane.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

289) NULL pointer dereference

EUVDB-ID: #VU96529

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43904

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn30_apply_idle_power_optimizations() function in drivers/gpu/drm/amd/display/dc/hwss/dcn30/dcn30_hwseq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

290) NULL pointer dereference

EUVDB-ID: #VU96528

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43905

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the vega10_find_dpm_states_clocks_in_dpm_table(), vega10_generate_dpm_level_enable_mask(), vega10_check_states_equal(), vega10_set_sclk_od(), vega10_set_mclk_od(), vega10_odn_update_power_state() and vega10_get_performance_level() functions in drivers/gpu/drm/amd/pm/powerplay/hwmgr/vega10_hwmgr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

291) NULL pointer dereference

EUVDB-ID: #VU96526

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43907

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the vega10_apply_state_adjust_rules() function in drivers/gpu/drm/amd/pm/powerplay/hwmgr/vega10_hwmgr.c, within the smu8_apply_state_adjust_rules() function in drivers/gpu/drm/amd/pm/powerplay/hwmgr/smu8_hwmgr.c, within the smu7_apply_state_adjust_rules() function in drivers/gpu/drm/amd/pm/powerplay/hwmgr/smu7_hwmgr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

292) NULL pointer dereference

EUVDB-ID: #VU96525

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43908

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the amdgpu_ras_interrupt_process_handler() function in drivers/gpu/drm/amd/amdgpu/amdgpu_ras.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

293) NULL pointer dereference

EUVDB-ID: #VU96524

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-43909

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the smu7_update_edc_leakage_table() and smu7_hwmgr_backend_init() functions in drivers/gpu/drm/amd/pm/powerplay/hwmgr/smu7_hwmgr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

294) Out-of-bounds read

EUVDB-ID: #VU96550

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-44938

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the dbDiscardAG() function in fs/jfs/jfs_dmap.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

295) NULL pointer dereference

EUVDB-ID: #VU96551

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-44939

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dtInsert() function in fs/jfs/jfs_dtree.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

296) Memory leak

EUVDB-ID: #VU96711

Risk: Low

CVSSv4.0: 5.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2024-44947

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: Yes

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the fuse_notify_store() function in fs/fuse/dev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise High Availability Extension 15: SP5

SUSE Linux Enterprise Workstation Extension 15: SP5

Development Tools Module: 15-SP5

Legacy Module: 15-SP5

Basesystem Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

SUSE Linux Enterprise Desktop 15: SP5

openSUSE Leap: 15.5

kernel-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-extra-debuginfo: before 5.14.21-150500.55.80.2

dtb-renesas: before 5.14.21-150500.55.80.1

dtb-mediatek: before 5.14.21-150500.55.80.1

dtb-hisilicon: before 5.14.21-150500.55.80.1

kernel-64kb-livepatch-devel: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-marvell: before 5.14.21-150500.55.80.1

dtb-cavium: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

kernel-64kb-extra: before 5.14.21-150500.55.80.2

cluster-md-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-optional: before 5.14.21-150500.55.80.2

dlm-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-apple: before 5.14.21-150500.55.80.1

dtb-apm: before 5.14.21-150500.55.80.1

kernel-64kb-devel: before 5.14.21-150500.55.80.2

dtb-freescale: before 5.14.21-150500.55.80.1

dtb-sprd: before 5.14.21-150500.55.80.1

dtb-socionext: before 5.14.21-150500.55.80.1

dtb-broadcom: before 5.14.21-150500.55.80.1

dtb-allwinner: before 5.14.21-150500.55.80.1

dlm-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

reiserfs-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-xilinx: before 5.14.21-150500.55.80.1

dtb-amd: before 5.14.21-150500.55.80.1

cluster-md-kmp-64kb: before 5.14.21-150500.55.80.2

kselftests-kmp-64kb-debuginfo: before 5.14.21-150500.55.80.2

dtb-nvidia: before 5.14.21-150500.55.80.1

kselftests-kmp-64kb: before 5.14.21-150500.55.80.2

kernel-64kb-devel-debuginfo: before 5.14.21-150500.55.80.2

dtb-amlogic: before 5.14.21-150500.55.80.1

ocfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-qcom: before 5.14.21-150500.55.80.1

dtb-rockchip: before 5.14.21-150500.55.80.1

dtb-exynos: before 5.14.21-150500.55.80.1

dtb-lg: before 5.14.21-150500.55.80.1

kernel-64kb-optional-debuginfo: before 5.14.21-150500.55.80.2

dtb-altera: before 5.14.21-150500.55.80.1

kernel-64kb-debugsource: before 5.14.21-150500.55.80.2

dtb-amazon: before 5.14.21-150500.55.80.1

kernel-64kb-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-64kb: before 5.14.21-150500.55.80.2

dtb-arm: before 5.14.21-150500.55.80.1

dtb-aarch64: before 5.14.21-150500.55.80.1

kernel-zfcpdump-debugsource: before 5.14.21-150500.55.80.2

kernel-zfcpdump-debuginfo: before 5.14.21-150500.55.80.2

kernel-zfcpdump: before 5.14.21-150500.55.80.2

kernel-livepatch-5_14_21-150500_55_80-default: before 1-150500.11.3.2

kernel-livepatch-SLE15-SP5_Update_19-debugsource: before 1-150500.11.3.2

kernel-livepatch-5_14_21-150500_55_80-default-debuginfo: before 1-150500.11.3.2

kernel-kvmsmall: before 5.14.21-150500.55.80.2

kernel-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional: before 5.14.21-150500.55.80.2

gfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-extra-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build: before 5.14.21-150500.55.80.1

kselftests-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

cluster-md-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-devel-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default: before 5.14.21-150500.55.80.2

reiserfs-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-livepatch-devel: before 5.14.21-150500.55.80.2

kselftests-kmp-default: before 5.14.21-150500.55.80.2

kernel-obs-qa: before 5.14.21-150500.55.80.1

kernel-syms: before 5.14.21-150500.55.80.1

kernel-default-extra: before 5.14.21-150500.55.80.2

dlm-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-livepatch: before 5.14.21-150500.55.80.2

cluster-md-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-optional-debuginfo: before 5.14.21-150500.55.80.2

kernel-obs-build-debugsource: before 5.14.21-150500.55.80.1

kernel-default-debuginfo: before 5.14.21-150500.55.80.2

ocfs2-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

dlm-kmp-default-debuginfo: before 5.14.21-150500.55.80.2

gfs2-kmp-default: before 5.14.21-150500.55.80.2

kernel-default-debugsource: before 5.14.21-150500.55.80.2

kernel-default-devel: before 5.14.21-150500.55.80.2

kernel-default-base: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-devel: before 5.14.21-150500.55.80.2

kernel-kvmsmall-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-base-rebuild: before 5.14.21-150500.55.80.2.150500.6.35.6

kernel-kvmsmall-debuginfo: before 5.14.21-150500.55.80.2

kernel-kvmsmall-debugsource: before 5.14.21-150500.55.80.2

kernel-kvmsmall-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-default-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-default-vdso: before 5.14.21-150500.55.80.2

kernel-debug-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso: before 5.14.21-150500.55.80.2

kernel-kvmsmall-vdso-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-devel-debuginfo: before 5.14.21-150500.55.80.2

kernel-debug-debugsource: before 5.14.21-150500.55.80.2

kernel-debug-livepatch-devel: before 5.14.21-150500.55.80.2

kernel-debug-devel: before 5.14.21-150500.55.80.2

kernel-debug: before 5.14.21-150500.55.80.2

kernel-devel: before 5.14.21-150500.55.80.2

kernel-source-vanilla: before 5.14.21-150500.55.80.2

kernel-macros: before 5.14.21-150500.55.80.2

kernel-source: before 5.14.21-150500.55.80.2

kernel-docs-html: before 5.14.21-150500.55.80.2

kernel-docs: before 5.14.21-150500.55.80.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243483-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.



###SIDEBAR###