Security Bulletin
This security bulletin contains information about 10 vulnerabilities.
EUVDB-ID: #VU92484
Risk: Low
CVSSv3.1: 4.1 [CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-47069
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an error within the IPC implementation in Linux kernel. A local user can trigger resource exhaustion and perform a denial of service (DoS) attack.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Live Patching: 15-SP3
SUSE Linux Enterprise Micro for Rancher: 5.2
SUSE Linux Enterprise Server 15 SP3 Business Critical Linux: 15-SP3
SUSE Linux Enterprise High Availability Extension 15: SP3
SUSE Linux Enterprise Server for SAP Applications 15: SP3
SUSE Linux Enterprise Server 15 SP3 LTSS: 15-SP3
SUSE Linux Enterprise Server 15: SP3
SUSE Linux Enterprise High Performance Computing LTSS 15: SP3
SUSE Linux Enterprise High Performance Computing 15: SP3
SUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2
SUSE Linux Enterprise Micro: 5.1 - 5.2
openSUSE Leap: 15.3
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
kernel-64kb: before 5.3.18-150300.59.179.1
dtb-hisilicon: before 5.3.18-150300.59.179.1
dtb-lg: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.179.1
dtb-nvidia: before 5.3.18-150300.59.179.1
kernel-64kb-debugsource: before 5.3.18-150300.59.179.1
dlm-kmp-64kb: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-mediatek: before 5.3.18-150300.59.179.1
dtb-arm: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-amd: before 5.3.18-150300.59.179.1
dtb-broadcom: before 5.3.18-150300.59.179.1
dtb-apm: before 5.3.18-150300.59.179.1
kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-rockchip: before 5.3.18-150300.59.179.1
dtb-qcom: before 5.3.18-150300.59.179.1
dtb-amlogic: before 5.3.18-150300.59.179.1
dtb-marvell: before 5.3.18-150300.59.179.1
kernel-64kb-optional: before 5.3.18-150300.59.179.1
dtb-altera: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-freescale: before 5.3.18-150300.59.179.1
dtb-al: before 5.3.18-150300.59.179.1
dtb-socionext: before 5.3.18-150300.59.179.1
dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-extra: before 5.3.18-150300.59.179.1
dtb-xilinx: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-devel: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-zte: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-sprd: before 5.3.18-150300.59.179.1
kernel-64kb-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.179.1
dtb-renesas: before 5.3.18-150300.59.179.1
dtb-cavium: before 5.3.18-150300.59.179.1
dtb-allwinner: before 5.3.18-150300.59.179.1
dtb-exynos: before 5.3.18-150300.59.179.1
dtb-aarch64: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debugsource: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.179.1
kernel-zfcpdump: before 5.3.18-150300.59.179.1
kernel-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-extra: before 5.3.18-150300.59.179.1
kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-preempt-devel: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt: before 5.3.18-150300.59.179.1
dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-debuginfo: before 5.3.18-150300.59.179.1
dlm-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-optional: before 5.3.18-150300.59.179.1
kernel-preempt-debugsource: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-livepatch-5_3_18-150300_59_179-preempt-debuginfo: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-preempt: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default: before 1-150300.7.3.2
kernel-livepatch-SLE15-SP3_Update_49-debugsource: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default-debuginfo: before 1-150300.7.3.2
kernel-default: before 5.3.18-150300.59.179.1
kselftests-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-build: before 5.3.18-150300.59.179.1
reiserfs-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional: before 5.3.18-150300.59.179.1
kernel-default-devel: before 5.3.18-150300.59.179.1
dlm-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-debugsource: before 5.3.18-150300.59.179.1
kernel-default-livepatch: before 5.3.18-150300.59.179.1
kernel-default-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra: before 5.3.18-150300.59.179.1
ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-base-rebuild: before 5.3.18-150300.59.179.1.150300.18.105.2
cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-obs-build-debugsource: before 5.3.18-150300.59.179.1
ocfs2-kmp-default: before 5.3.18-150300.59.179.1
dlm-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-base: before 5.3.18-150300.59.179.1.150300.18.105.2
reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-default: before 5.3.18-150300.59.179.1
gfs2-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-qa: before 5.3.18-150300.59.179.1
kernel-syms: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel: before 5.3.18-150300.59.179.1
kernel-debug-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-devel: before 5.3.18-150300.59.179.1
kernel-kvmsmall: before 5.3.18-150300.59.179.1
kernel-debug: before 5.3.18-150300.59.179.1
kernel-macros: before 5.3.18-150300.59.179.1
kernel-docs-html: before 5.3.18-150300.59.179.1
kernel-devel: before 5.3.18-150300.59.179.1
kernel-source: before 5.3.18-150300.59.179.1
kernel-source-vanilla: before 5.3.18-150300.59.179.1
kernel-docs: before 5.3.18-150300.59.179.1
CPE2.3http://www.suse.com/support/update/announcement/2024/suse-su-20243585-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU96410
Risk: Low
CVSSv3.1: 7.7 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-48911
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the nf_queue_entry_dup() function in net/netfilter/nfnetlink_queue.c, within the nf_queue_entry_release_refs(), nf_queue_entry_get_refs() and __nf_queue() functions in net/netfilter/nf_queue.c. A local user can escalate privileges on the system.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Live Patching: 15-SP3
SUSE Linux Enterprise Micro for Rancher: 5.2
SUSE Linux Enterprise Server 15 SP3 Business Critical Linux: 15-SP3
SUSE Linux Enterprise High Availability Extension 15: SP3
SUSE Linux Enterprise Server for SAP Applications 15: SP3
SUSE Linux Enterprise Server 15 SP3 LTSS: 15-SP3
SUSE Linux Enterprise Server 15: SP3
SUSE Linux Enterprise High Performance Computing LTSS 15: SP3
SUSE Linux Enterprise High Performance Computing 15: SP3
SUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2
SUSE Linux Enterprise Micro: 5.1 - 5.2
openSUSE Leap: 15.3
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
kernel-64kb: before 5.3.18-150300.59.179.1
dtb-hisilicon: before 5.3.18-150300.59.179.1
dtb-lg: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.179.1
dtb-nvidia: before 5.3.18-150300.59.179.1
kernel-64kb-debugsource: before 5.3.18-150300.59.179.1
dlm-kmp-64kb: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-mediatek: before 5.3.18-150300.59.179.1
dtb-arm: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-amd: before 5.3.18-150300.59.179.1
dtb-broadcom: before 5.3.18-150300.59.179.1
dtb-apm: before 5.3.18-150300.59.179.1
kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-rockchip: before 5.3.18-150300.59.179.1
dtb-qcom: before 5.3.18-150300.59.179.1
dtb-amlogic: before 5.3.18-150300.59.179.1
dtb-marvell: before 5.3.18-150300.59.179.1
kernel-64kb-optional: before 5.3.18-150300.59.179.1
dtb-altera: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-freescale: before 5.3.18-150300.59.179.1
dtb-al: before 5.3.18-150300.59.179.1
dtb-socionext: before 5.3.18-150300.59.179.1
dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-extra: before 5.3.18-150300.59.179.1
dtb-xilinx: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-devel: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-zte: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-sprd: before 5.3.18-150300.59.179.1
kernel-64kb-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.179.1
dtb-renesas: before 5.3.18-150300.59.179.1
dtb-cavium: before 5.3.18-150300.59.179.1
dtb-allwinner: before 5.3.18-150300.59.179.1
dtb-exynos: before 5.3.18-150300.59.179.1
dtb-aarch64: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debugsource: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.179.1
kernel-zfcpdump: before 5.3.18-150300.59.179.1
kernel-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-extra: before 5.3.18-150300.59.179.1
kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-preempt-devel: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt: before 5.3.18-150300.59.179.1
dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-debuginfo: before 5.3.18-150300.59.179.1
dlm-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-optional: before 5.3.18-150300.59.179.1
kernel-preempt-debugsource: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-livepatch-5_3_18-150300_59_179-preempt-debuginfo: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-preempt: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default: before 1-150300.7.3.2
kernel-livepatch-SLE15-SP3_Update_49-debugsource: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default-debuginfo: before 1-150300.7.3.2
kernel-default: before 5.3.18-150300.59.179.1
kselftests-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-build: before 5.3.18-150300.59.179.1
reiserfs-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional: before 5.3.18-150300.59.179.1
kernel-default-devel: before 5.3.18-150300.59.179.1
dlm-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-debugsource: before 5.3.18-150300.59.179.1
kernel-default-livepatch: before 5.3.18-150300.59.179.1
kernel-default-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra: before 5.3.18-150300.59.179.1
ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-base-rebuild: before 5.3.18-150300.59.179.1.150300.18.105.2
cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-obs-build-debugsource: before 5.3.18-150300.59.179.1
ocfs2-kmp-default: before 5.3.18-150300.59.179.1
dlm-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-base: before 5.3.18-150300.59.179.1.150300.18.105.2
reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-default: before 5.3.18-150300.59.179.1
gfs2-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-qa: before 5.3.18-150300.59.179.1
kernel-syms: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel: before 5.3.18-150300.59.179.1
kernel-debug-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-devel: before 5.3.18-150300.59.179.1
kernel-kvmsmall: before 5.3.18-150300.59.179.1
kernel-debug: before 5.3.18-150300.59.179.1
kernel-macros: before 5.3.18-150300.59.179.1
kernel-docs-html: before 5.3.18-150300.59.179.1
kernel-devel: before 5.3.18-150300.59.179.1
kernel-source: before 5.3.18-150300.59.179.1
kernel-source-vanilla: before 5.3.18-150300.59.179.1
kernel-docs: before 5.3.18-150300.59.179.1
CPE2.3http://www.suse.com/support/update/announcement/2024/suse-su-20243585-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU97681
Risk: Low
CVSSv3.1: 7.7 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-48945
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the vivid_vid_cap_s_selection() function in drivers/media/platform/vivid/vivid-vid-cap.c. A local user can escalate privileges on the system.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Live Patching: 15-SP3
SUSE Linux Enterprise Micro for Rancher: 5.2
SUSE Linux Enterprise Server 15 SP3 Business Critical Linux: 15-SP3
SUSE Linux Enterprise High Availability Extension 15: SP3
SUSE Linux Enterprise Server for SAP Applications 15: SP3
SUSE Linux Enterprise Server 15 SP3 LTSS: 15-SP3
SUSE Linux Enterprise Server 15: SP3
SUSE Linux Enterprise High Performance Computing LTSS 15: SP3
SUSE Linux Enterprise High Performance Computing 15: SP3
SUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2
SUSE Linux Enterprise Micro: 5.1 - 5.2
openSUSE Leap: 15.3
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
kernel-64kb: before 5.3.18-150300.59.179.1
dtb-hisilicon: before 5.3.18-150300.59.179.1
dtb-lg: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.179.1
dtb-nvidia: before 5.3.18-150300.59.179.1
kernel-64kb-debugsource: before 5.3.18-150300.59.179.1
dlm-kmp-64kb: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-mediatek: before 5.3.18-150300.59.179.1
dtb-arm: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-amd: before 5.3.18-150300.59.179.1
dtb-broadcom: before 5.3.18-150300.59.179.1
dtb-apm: before 5.3.18-150300.59.179.1
kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-rockchip: before 5.3.18-150300.59.179.1
dtb-qcom: before 5.3.18-150300.59.179.1
dtb-amlogic: before 5.3.18-150300.59.179.1
dtb-marvell: before 5.3.18-150300.59.179.1
kernel-64kb-optional: before 5.3.18-150300.59.179.1
dtb-altera: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-freescale: before 5.3.18-150300.59.179.1
dtb-al: before 5.3.18-150300.59.179.1
dtb-socionext: before 5.3.18-150300.59.179.1
dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-extra: before 5.3.18-150300.59.179.1
dtb-xilinx: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-devel: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-zte: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-sprd: before 5.3.18-150300.59.179.1
kernel-64kb-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.179.1
dtb-renesas: before 5.3.18-150300.59.179.1
dtb-cavium: before 5.3.18-150300.59.179.1
dtb-allwinner: before 5.3.18-150300.59.179.1
dtb-exynos: before 5.3.18-150300.59.179.1
dtb-aarch64: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debugsource: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.179.1
kernel-zfcpdump: before 5.3.18-150300.59.179.1
kernel-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-extra: before 5.3.18-150300.59.179.1
kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-preempt-devel: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt: before 5.3.18-150300.59.179.1
dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-debuginfo: before 5.3.18-150300.59.179.1
dlm-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-optional: before 5.3.18-150300.59.179.1
kernel-preempt-debugsource: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-livepatch-5_3_18-150300_59_179-preempt-debuginfo: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-preempt: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default: before 1-150300.7.3.2
kernel-livepatch-SLE15-SP3_Update_49-debugsource: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default-debuginfo: before 1-150300.7.3.2
kernel-default: before 5.3.18-150300.59.179.1
kselftests-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-build: before 5.3.18-150300.59.179.1
reiserfs-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional: before 5.3.18-150300.59.179.1
kernel-default-devel: before 5.3.18-150300.59.179.1
dlm-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-debugsource: before 5.3.18-150300.59.179.1
kernel-default-livepatch: before 5.3.18-150300.59.179.1
kernel-default-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra: before 5.3.18-150300.59.179.1
ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-base-rebuild: before 5.3.18-150300.59.179.1.150300.18.105.2
cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-obs-build-debugsource: before 5.3.18-150300.59.179.1
ocfs2-kmp-default: before 5.3.18-150300.59.179.1
dlm-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-base: before 5.3.18-150300.59.179.1.150300.18.105.2
reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-default: before 5.3.18-150300.59.179.1
gfs2-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-qa: before 5.3.18-150300.59.179.1
kernel-syms: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel: before 5.3.18-150300.59.179.1
kernel-debug-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-devel: before 5.3.18-150300.59.179.1
kernel-kvmsmall: before 5.3.18-150300.59.179.1
kernel-debug: before 5.3.18-150300.59.179.1
kernel-macros: before 5.3.18-150300.59.179.1
kernel-docs-html: before 5.3.18-150300.59.179.1
kernel-devel: before 5.3.18-150300.59.179.1
kernel-source: before 5.3.18-150300.59.179.1
kernel-source-vanilla: before 5.3.18-150300.59.179.1
kernel-docs: before 5.3.18-150300.59.179.1
CPE2.3http://www.suse.com/support/update/announcement/2024/suse-su-20243585-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU91597
Risk: Critical
CVSSv3.1: 8.4 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:H/RL:O/RC:C]
CVE-ID: CVE-2024-36971
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the system.
The vulnerability exists due to a use-after-free error within the xfrm_link_failure() function in net/xfrm/xfrm_policy.c, within the dst_entry ip6_dst_check() and ip6_dst_check() functions in net/ipv6/route.c, within the dst_entry ipv4_dst_check() and ip_do_redirect() functions in net/ipv4/route.c. A remote attacker can send specially crafted packets to the system and execute arbitrary code.
Note, the vulnerability is being actively exploited in the wild.
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Live Patching: 15-SP3
SUSE Linux Enterprise Micro for Rancher: 5.2
SUSE Linux Enterprise Server 15 SP3 Business Critical Linux: 15-SP3
SUSE Linux Enterprise High Availability Extension 15: SP3
SUSE Linux Enterprise Server for SAP Applications 15: SP3
SUSE Linux Enterprise Server 15 SP3 LTSS: 15-SP3
SUSE Linux Enterprise Server 15: SP3
SUSE Linux Enterprise High Performance Computing LTSS 15: SP3
SUSE Linux Enterprise High Performance Computing 15: SP3
SUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2
SUSE Linux Enterprise Micro: 5.1 - 5.2
openSUSE Leap: 15.3
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
kernel-64kb: before 5.3.18-150300.59.179.1
dtb-hisilicon: before 5.3.18-150300.59.179.1
dtb-lg: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.179.1
dtb-nvidia: before 5.3.18-150300.59.179.1
kernel-64kb-debugsource: before 5.3.18-150300.59.179.1
dlm-kmp-64kb: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-mediatek: before 5.3.18-150300.59.179.1
dtb-arm: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-amd: before 5.3.18-150300.59.179.1
dtb-broadcom: before 5.3.18-150300.59.179.1
dtb-apm: before 5.3.18-150300.59.179.1
kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-rockchip: before 5.3.18-150300.59.179.1
dtb-qcom: before 5.3.18-150300.59.179.1
dtb-amlogic: before 5.3.18-150300.59.179.1
dtb-marvell: before 5.3.18-150300.59.179.1
kernel-64kb-optional: before 5.3.18-150300.59.179.1
dtb-altera: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-freescale: before 5.3.18-150300.59.179.1
dtb-al: before 5.3.18-150300.59.179.1
dtb-socionext: before 5.3.18-150300.59.179.1
dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-extra: before 5.3.18-150300.59.179.1
dtb-xilinx: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-devel: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-zte: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-sprd: before 5.3.18-150300.59.179.1
kernel-64kb-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.179.1
dtb-renesas: before 5.3.18-150300.59.179.1
dtb-cavium: before 5.3.18-150300.59.179.1
dtb-allwinner: before 5.3.18-150300.59.179.1
dtb-exynos: before 5.3.18-150300.59.179.1
dtb-aarch64: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debugsource: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.179.1
kernel-zfcpdump: before 5.3.18-150300.59.179.1
kernel-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-extra: before 5.3.18-150300.59.179.1
kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-preempt-devel: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt: before 5.3.18-150300.59.179.1
dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-debuginfo: before 5.3.18-150300.59.179.1
dlm-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-optional: before 5.3.18-150300.59.179.1
kernel-preempt-debugsource: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-livepatch-5_3_18-150300_59_179-preempt-debuginfo: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-preempt: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default: before 1-150300.7.3.2
kernel-livepatch-SLE15-SP3_Update_49-debugsource: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default-debuginfo: before 1-150300.7.3.2
kernel-default: before 5.3.18-150300.59.179.1
kselftests-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-build: before 5.3.18-150300.59.179.1
reiserfs-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional: before 5.3.18-150300.59.179.1
kernel-default-devel: before 5.3.18-150300.59.179.1
dlm-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-debugsource: before 5.3.18-150300.59.179.1
kernel-default-livepatch: before 5.3.18-150300.59.179.1
kernel-default-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra: before 5.3.18-150300.59.179.1
ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-base-rebuild: before 5.3.18-150300.59.179.1.150300.18.105.2
cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-obs-build-debugsource: before 5.3.18-150300.59.179.1
ocfs2-kmp-default: before 5.3.18-150300.59.179.1
dlm-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-base: before 5.3.18-150300.59.179.1.150300.18.105.2
reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-default: before 5.3.18-150300.59.179.1
gfs2-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-qa: before 5.3.18-150300.59.179.1
kernel-syms: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel: before 5.3.18-150300.59.179.1
kernel-debug-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-devel: before 5.3.18-150300.59.179.1
kernel-kvmsmall: before 5.3.18-150300.59.179.1
kernel-debug: before 5.3.18-150300.59.179.1
kernel-macros: before 5.3.18-150300.59.179.1
kernel-docs-html: before 5.3.18-150300.59.179.1
kernel-devel: before 5.3.18-150300.59.179.1
kernel-source: before 5.3.18-150300.59.179.1
kernel-source-vanilla: before 5.3.18-150300.59.179.1
kernel-docs: before 5.3.18-150300.59.179.1
CPE2.3http://www.suse.com/support/update/announcement/2024/suse-su-20243585-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
Yes. This vulnerability is being exploited in the wild.
EUVDB-ID: #VU95008
Risk: Low
CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-41087
CWE-ID:
CWE-415 - Double Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a double free error within the ata_host_alloc() function in drivers/ata/libata-core.c. A local user can perform a denial of service (DoS) attack.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Live Patching: 15-SP3
SUSE Linux Enterprise Micro for Rancher: 5.2
SUSE Linux Enterprise Server 15 SP3 Business Critical Linux: 15-SP3
SUSE Linux Enterprise High Availability Extension 15: SP3
SUSE Linux Enterprise Server for SAP Applications 15: SP3
SUSE Linux Enterprise Server 15 SP3 LTSS: 15-SP3
SUSE Linux Enterprise Server 15: SP3
SUSE Linux Enterprise High Performance Computing LTSS 15: SP3
SUSE Linux Enterprise High Performance Computing 15: SP3
SUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2
SUSE Linux Enterprise Micro: 5.1 - 5.2
openSUSE Leap: 15.3
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
kernel-64kb: before 5.3.18-150300.59.179.1
dtb-hisilicon: before 5.3.18-150300.59.179.1
dtb-lg: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.179.1
dtb-nvidia: before 5.3.18-150300.59.179.1
kernel-64kb-debugsource: before 5.3.18-150300.59.179.1
dlm-kmp-64kb: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-mediatek: before 5.3.18-150300.59.179.1
dtb-arm: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-amd: before 5.3.18-150300.59.179.1
dtb-broadcom: before 5.3.18-150300.59.179.1
dtb-apm: before 5.3.18-150300.59.179.1
kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-rockchip: before 5.3.18-150300.59.179.1
dtb-qcom: before 5.3.18-150300.59.179.1
dtb-amlogic: before 5.3.18-150300.59.179.1
dtb-marvell: before 5.3.18-150300.59.179.1
kernel-64kb-optional: before 5.3.18-150300.59.179.1
dtb-altera: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-freescale: before 5.3.18-150300.59.179.1
dtb-al: before 5.3.18-150300.59.179.1
dtb-socionext: before 5.3.18-150300.59.179.1
dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-extra: before 5.3.18-150300.59.179.1
dtb-xilinx: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-devel: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-zte: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-sprd: before 5.3.18-150300.59.179.1
kernel-64kb-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.179.1
dtb-renesas: before 5.3.18-150300.59.179.1
dtb-cavium: before 5.3.18-150300.59.179.1
dtb-allwinner: before 5.3.18-150300.59.179.1
dtb-exynos: before 5.3.18-150300.59.179.1
dtb-aarch64: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debugsource: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.179.1
kernel-zfcpdump: before 5.3.18-150300.59.179.1
kernel-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-extra: before 5.3.18-150300.59.179.1
kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-preempt-devel: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt: before 5.3.18-150300.59.179.1
dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-debuginfo: before 5.3.18-150300.59.179.1
dlm-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-optional: before 5.3.18-150300.59.179.1
kernel-preempt-debugsource: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-livepatch-5_3_18-150300_59_179-preempt-debuginfo: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-preempt: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default: before 1-150300.7.3.2
kernel-livepatch-SLE15-SP3_Update_49-debugsource: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default-debuginfo: before 1-150300.7.3.2
kernel-default: before 5.3.18-150300.59.179.1
kselftests-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-build: before 5.3.18-150300.59.179.1
reiserfs-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional: before 5.3.18-150300.59.179.1
kernel-default-devel: before 5.3.18-150300.59.179.1
dlm-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-debugsource: before 5.3.18-150300.59.179.1
kernel-default-livepatch: before 5.3.18-150300.59.179.1
kernel-default-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra: before 5.3.18-150300.59.179.1
ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-base-rebuild: before 5.3.18-150300.59.179.1.150300.18.105.2
cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-obs-build-debugsource: before 5.3.18-150300.59.179.1
ocfs2-kmp-default: before 5.3.18-150300.59.179.1
dlm-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-base: before 5.3.18-150300.59.179.1.150300.18.105.2
reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-default: before 5.3.18-150300.59.179.1
gfs2-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-qa: before 5.3.18-150300.59.179.1
kernel-syms: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel: before 5.3.18-150300.59.179.1
kernel-debug-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-devel: before 5.3.18-150300.59.179.1
kernel-kvmsmall: before 5.3.18-150300.59.179.1
kernel-debug: before 5.3.18-150300.59.179.1
kernel-macros: before 5.3.18-150300.59.179.1
kernel-docs-html: before 5.3.18-150300.59.179.1
kernel-devel: before 5.3.18-150300.59.179.1
kernel-source: before 5.3.18-150300.59.179.1
kernel-source-vanilla: before 5.3.18-150300.59.179.1
kernel-docs: before 5.3.18-150300.59.179.1
CPE2.3http://www.suse.com/support/update/announcement/2024/suse-su-20243585-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU96658
Risk: Low
CVSSv3.1: 7.9 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C]
CVE-ID: CVE-2024-44946
CWE-ID:
CWE-416 - Use After Free
Exploit availability: Yes
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the kcm_sendmsg(), KCM_STATS_ADD(), sk->sk_write_space() and init_kcm_sock() functions in net/kcm/kcmsock.c. A local user can escalate privileges on the system.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Live Patching: 15-SP3
SUSE Linux Enterprise Micro for Rancher: 5.2
SUSE Linux Enterprise Server 15 SP3 Business Critical Linux: 15-SP3
SUSE Linux Enterprise High Availability Extension 15: SP3
SUSE Linux Enterprise Server for SAP Applications 15: SP3
SUSE Linux Enterprise Server 15 SP3 LTSS: 15-SP3
SUSE Linux Enterprise Server 15: SP3
SUSE Linux Enterprise High Performance Computing LTSS 15: SP3
SUSE Linux Enterprise High Performance Computing 15: SP3
SUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2
SUSE Linux Enterprise Micro: 5.1 - 5.2
openSUSE Leap: 15.3
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
kernel-64kb: before 5.3.18-150300.59.179.1
dtb-hisilicon: before 5.3.18-150300.59.179.1
dtb-lg: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.179.1
dtb-nvidia: before 5.3.18-150300.59.179.1
kernel-64kb-debugsource: before 5.3.18-150300.59.179.1
dlm-kmp-64kb: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-mediatek: before 5.3.18-150300.59.179.1
dtb-arm: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-amd: before 5.3.18-150300.59.179.1
dtb-broadcom: before 5.3.18-150300.59.179.1
dtb-apm: before 5.3.18-150300.59.179.1
kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-rockchip: before 5.3.18-150300.59.179.1
dtb-qcom: before 5.3.18-150300.59.179.1
dtb-amlogic: before 5.3.18-150300.59.179.1
dtb-marvell: before 5.3.18-150300.59.179.1
kernel-64kb-optional: before 5.3.18-150300.59.179.1
dtb-altera: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-freescale: before 5.3.18-150300.59.179.1
dtb-al: before 5.3.18-150300.59.179.1
dtb-socionext: before 5.3.18-150300.59.179.1
dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-extra: before 5.3.18-150300.59.179.1
dtb-xilinx: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-devel: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-zte: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-sprd: before 5.3.18-150300.59.179.1
kernel-64kb-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.179.1
dtb-renesas: before 5.3.18-150300.59.179.1
dtb-cavium: before 5.3.18-150300.59.179.1
dtb-allwinner: before 5.3.18-150300.59.179.1
dtb-exynos: before 5.3.18-150300.59.179.1
dtb-aarch64: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debugsource: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.179.1
kernel-zfcpdump: before 5.3.18-150300.59.179.1
kernel-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-extra: before 5.3.18-150300.59.179.1
kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-preempt-devel: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt: before 5.3.18-150300.59.179.1
dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-debuginfo: before 5.3.18-150300.59.179.1
dlm-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-optional: before 5.3.18-150300.59.179.1
kernel-preempt-debugsource: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-livepatch-5_3_18-150300_59_179-preempt-debuginfo: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-preempt: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default: before 1-150300.7.3.2
kernel-livepatch-SLE15-SP3_Update_49-debugsource: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default-debuginfo: before 1-150300.7.3.2
kernel-default: before 5.3.18-150300.59.179.1
kselftests-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-build: before 5.3.18-150300.59.179.1
reiserfs-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional: before 5.3.18-150300.59.179.1
kernel-default-devel: before 5.3.18-150300.59.179.1
dlm-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-debugsource: before 5.3.18-150300.59.179.1
kernel-default-livepatch: before 5.3.18-150300.59.179.1
kernel-default-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra: before 5.3.18-150300.59.179.1
ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-base-rebuild: before 5.3.18-150300.59.179.1.150300.18.105.2
cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-obs-build-debugsource: before 5.3.18-150300.59.179.1
ocfs2-kmp-default: before 5.3.18-150300.59.179.1
dlm-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-base: before 5.3.18-150300.59.179.1.150300.18.105.2
reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-default: before 5.3.18-150300.59.179.1
gfs2-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-qa: before 5.3.18-150300.59.179.1
kernel-syms: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel: before 5.3.18-150300.59.179.1
kernel-debug-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-devel: before 5.3.18-150300.59.179.1
kernel-kvmsmall: before 5.3.18-150300.59.179.1
kernel-debug: before 5.3.18-150300.59.179.1
kernel-macros: before 5.3.18-150300.59.179.1
kernel-docs-html: before 5.3.18-150300.59.179.1
kernel-devel: before 5.3.18-150300.59.179.1
kernel-source: before 5.3.18-150300.59.179.1
kernel-source-vanilla: before 5.3.18-150300.59.179.1
kernel-docs: before 5.3.18-150300.59.179.1
CPE2.3http://www.suse.com/support/update/announcement/2024/suse-su-20243585-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
EUVDB-ID: #VU96843
Risk: Low
CVSSv3.1: 7.7 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-45003
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the inode_lru_list_del(), evict() and inode_lru_isolate() functions in fs/inode.c. A local user can escalate privileges on the system.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Live Patching: 15-SP3
SUSE Linux Enterprise Micro for Rancher: 5.2
SUSE Linux Enterprise Server 15 SP3 Business Critical Linux: 15-SP3
SUSE Linux Enterprise High Availability Extension 15: SP3
SUSE Linux Enterprise Server for SAP Applications 15: SP3
SUSE Linux Enterprise Server 15 SP3 LTSS: 15-SP3
SUSE Linux Enterprise Server 15: SP3
SUSE Linux Enterprise High Performance Computing LTSS 15: SP3
SUSE Linux Enterprise High Performance Computing 15: SP3
SUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2
SUSE Linux Enterprise Micro: 5.1 - 5.2
openSUSE Leap: 15.3
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
kernel-64kb: before 5.3.18-150300.59.179.1
dtb-hisilicon: before 5.3.18-150300.59.179.1
dtb-lg: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.179.1
dtb-nvidia: before 5.3.18-150300.59.179.1
kernel-64kb-debugsource: before 5.3.18-150300.59.179.1
dlm-kmp-64kb: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-mediatek: before 5.3.18-150300.59.179.1
dtb-arm: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-amd: before 5.3.18-150300.59.179.1
dtb-broadcom: before 5.3.18-150300.59.179.1
dtb-apm: before 5.3.18-150300.59.179.1
kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-rockchip: before 5.3.18-150300.59.179.1
dtb-qcom: before 5.3.18-150300.59.179.1
dtb-amlogic: before 5.3.18-150300.59.179.1
dtb-marvell: before 5.3.18-150300.59.179.1
kernel-64kb-optional: before 5.3.18-150300.59.179.1
dtb-altera: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-freescale: before 5.3.18-150300.59.179.1
dtb-al: before 5.3.18-150300.59.179.1
dtb-socionext: before 5.3.18-150300.59.179.1
dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-extra: before 5.3.18-150300.59.179.1
dtb-xilinx: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-devel: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-zte: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-sprd: before 5.3.18-150300.59.179.1
kernel-64kb-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.179.1
dtb-renesas: before 5.3.18-150300.59.179.1
dtb-cavium: before 5.3.18-150300.59.179.1
dtb-allwinner: before 5.3.18-150300.59.179.1
dtb-exynos: before 5.3.18-150300.59.179.1
dtb-aarch64: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debugsource: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.179.1
kernel-zfcpdump: before 5.3.18-150300.59.179.1
kernel-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-extra: before 5.3.18-150300.59.179.1
kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-preempt-devel: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt: before 5.3.18-150300.59.179.1
dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-debuginfo: before 5.3.18-150300.59.179.1
dlm-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-optional: before 5.3.18-150300.59.179.1
kernel-preempt-debugsource: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-livepatch-5_3_18-150300_59_179-preempt-debuginfo: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-preempt: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default: before 1-150300.7.3.2
kernel-livepatch-SLE15-SP3_Update_49-debugsource: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default-debuginfo: before 1-150300.7.3.2
kernel-default: before 5.3.18-150300.59.179.1
kselftests-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-build: before 5.3.18-150300.59.179.1
reiserfs-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional: before 5.3.18-150300.59.179.1
kernel-default-devel: before 5.3.18-150300.59.179.1
dlm-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-debugsource: before 5.3.18-150300.59.179.1
kernel-default-livepatch: before 5.3.18-150300.59.179.1
kernel-default-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra: before 5.3.18-150300.59.179.1
ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-base-rebuild: before 5.3.18-150300.59.179.1.150300.18.105.2
cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-obs-build-debugsource: before 5.3.18-150300.59.179.1
ocfs2-kmp-default: before 5.3.18-150300.59.179.1
dlm-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-base: before 5.3.18-150300.59.179.1.150300.18.105.2
reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-default: before 5.3.18-150300.59.179.1
gfs2-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-qa: before 5.3.18-150300.59.179.1
kernel-syms: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel: before 5.3.18-150300.59.179.1
kernel-debug-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-devel: before 5.3.18-150300.59.179.1
kernel-kvmsmall: before 5.3.18-150300.59.179.1
kernel-debug: before 5.3.18-150300.59.179.1
kernel-macros: before 5.3.18-150300.59.179.1
kernel-docs-html: before 5.3.18-150300.59.179.1
kernel-devel: before 5.3.18-150300.59.179.1
kernel-source: before 5.3.18-150300.59.179.1
kernel-source-vanilla: before 5.3.18-150300.59.179.1
kernel-docs: before 5.3.18-150300.59.179.1
CPE2.3http://www.suse.com/support/update/announcement/2024/suse-su-20243585-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU97184
Risk: Low
CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-45021
CWE-ID:
CWE-665 - Improper Initialization
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper initialization within the memcg_write_event_control() function in mm/memcontrol.c. A local user can perform a denial of service (DoS) attack.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Live Patching: 15-SP3
SUSE Linux Enterprise Micro for Rancher: 5.2
SUSE Linux Enterprise Server 15 SP3 Business Critical Linux: 15-SP3
SUSE Linux Enterprise High Availability Extension 15: SP3
SUSE Linux Enterprise Server for SAP Applications 15: SP3
SUSE Linux Enterprise Server 15 SP3 LTSS: 15-SP3
SUSE Linux Enterprise Server 15: SP3
SUSE Linux Enterprise High Performance Computing LTSS 15: SP3
SUSE Linux Enterprise High Performance Computing 15: SP3
SUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2
SUSE Linux Enterprise Micro: 5.1 - 5.2
openSUSE Leap: 15.3
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
kernel-64kb: before 5.3.18-150300.59.179.1
dtb-hisilicon: before 5.3.18-150300.59.179.1
dtb-lg: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.179.1
dtb-nvidia: before 5.3.18-150300.59.179.1
kernel-64kb-debugsource: before 5.3.18-150300.59.179.1
dlm-kmp-64kb: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-mediatek: before 5.3.18-150300.59.179.1
dtb-arm: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-amd: before 5.3.18-150300.59.179.1
dtb-broadcom: before 5.3.18-150300.59.179.1
dtb-apm: before 5.3.18-150300.59.179.1
kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-rockchip: before 5.3.18-150300.59.179.1
dtb-qcom: before 5.3.18-150300.59.179.1
dtb-amlogic: before 5.3.18-150300.59.179.1
dtb-marvell: before 5.3.18-150300.59.179.1
kernel-64kb-optional: before 5.3.18-150300.59.179.1
dtb-altera: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-freescale: before 5.3.18-150300.59.179.1
dtb-al: before 5.3.18-150300.59.179.1
dtb-socionext: before 5.3.18-150300.59.179.1
dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-extra: before 5.3.18-150300.59.179.1
dtb-xilinx: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-devel: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-zte: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-sprd: before 5.3.18-150300.59.179.1
kernel-64kb-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.179.1
dtb-renesas: before 5.3.18-150300.59.179.1
dtb-cavium: before 5.3.18-150300.59.179.1
dtb-allwinner: before 5.3.18-150300.59.179.1
dtb-exynos: before 5.3.18-150300.59.179.1
dtb-aarch64: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debugsource: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.179.1
kernel-zfcpdump: before 5.3.18-150300.59.179.1
kernel-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-extra: before 5.3.18-150300.59.179.1
kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-preempt-devel: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt: before 5.3.18-150300.59.179.1
dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-debuginfo: before 5.3.18-150300.59.179.1
dlm-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-optional: before 5.3.18-150300.59.179.1
kernel-preempt-debugsource: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-livepatch-5_3_18-150300_59_179-preempt-debuginfo: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-preempt: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default: before 1-150300.7.3.2
kernel-livepatch-SLE15-SP3_Update_49-debugsource: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default-debuginfo: before 1-150300.7.3.2
kernel-default: before 5.3.18-150300.59.179.1
kselftests-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-build: before 5.3.18-150300.59.179.1
reiserfs-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional: before 5.3.18-150300.59.179.1
kernel-default-devel: before 5.3.18-150300.59.179.1
dlm-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-debugsource: before 5.3.18-150300.59.179.1
kernel-default-livepatch: before 5.3.18-150300.59.179.1
kernel-default-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra: before 5.3.18-150300.59.179.1
ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-base-rebuild: before 5.3.18-150300.59.179.1.150300.18.105.2
cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-obs-build-debugsource: before 5.3.18-150300.59.179.1
ocfs2-kmp-default: before 5.3.18-150300.59.179.1
dlm-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-base: before 5.3.18-150300.59.179.1.150300.18.105.2
reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-default: before 5.3.18-150300.59.179.1
gfs2-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-qa: before 5.3.18-150300.59.179.1
kernel-syms: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel: before 5.3.18-150300.59.179.1
kernel-debug-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-devel: before 5.3.18-150300.59.179.1
kernel-kvmsmall: before 5.3.18-150300.59.179.1
kernel-debug: before 5.3.18-150300.59.179.1
kernel-macros: before 5.3.18-150300.59.179.1
kernel-docs-html: before 5.3.18-150300.59.179.1
kernel-devel: before 5.3.18-150300.59.179.1
kernel-source: before 5.3.18-150300.59.179.1
kernel-source-vanilla: before 5.3.18-150300.59.179.1
kernel-docs: before 5.3.18-150300.59.179.1
CPE2.3http://www.suse.com/support/update/announcement/2024/suse-su-20243585-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU97268
Risk: Low
CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-46695
CWE-ID:
CWE-667 - Improper Locking
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the smack_inode_notifysecctx() function in security/smack/smack_lsm.c, within the selinux_inode_notifysecctx() function in security/selinux/hooks.c. A local user can perform a denial of service (DoS) attack.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Live Patching: 15-SP3
SUSE Linux Enterprise Micro for Rancher: 5.2
SUSE Linux Enterprise Server 15 SP3 Business Critical Linux: 15-SP3
SUSE Linux Enterprise High Availability Extension 15: SP3
SUSE Linux Enterprise Server for SAP Applications 15: SP3
SUSE Linux Enterprise Server 15 SP3 LTSS: 15-SP3
SUSE Linux Enterprise Server 15: SP3
SUSE Linux Enterprise High Performance Computing LTSS 15: SP3
SUSE Linux Enterprise High Performance Computing 15: SP3
SUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2
SUSE Linux Enterprise Micro: 5.1 - 5.2
openSUSE Leap: 15.3
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
kernel-64kb: before 5.3.18-150300.59.179.1
dtb-hisilicon: before 5.3.18-150300.59.179.1
dtb-lg: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.179.1
dtb-nvidia: before 5.3.18-150300.59.179.1
kernel-64kb-debugsource: before 5.3.18-150300.59.179.1
dlm-kmp-64kb: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-mediatek: before 5.3.18-150300.59.179.1
dtb-arm: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-amd: before 5.3.18-150300.59.179.1
dtb-broadcom: before 5.3.18-150300.59.179.1
dtb-apm: before 5.3.18-150300.59.179.1
kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-rockchip: before 5.3.18-150300.59.179.1
dtb-qcom: before 5.3.18-150300.59.179.1
dtb-amlogic: before 5.3.18-150300.59.179.1
dtb-marvell: before 5.3.18-150300.59.179.1
kernel-64kb-optional: before 5.3.18-150300.59.179.1
dtb-altera: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-freescale: before 5.3.18-150300.59.179.1
dtb-al: before 5.3.18-150300.59.179.1
dtb-socionext: before 5.3.18-150300.59.179.1
dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-extra: before 5.3.18-150300.59.179.1
dtb-xilinx: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-devel: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-zte: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-sprd: before 5.3.18-150300.59.179.1
kernel-64kb-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.179.1
dtb-renesas: before 5.3.18-150300.59.179.1
dtb-cavium: before 5.3.18-150300.59.179.1
dtb-allwinner: before 5.3.18-150300.59.179.1
dtb-exynos: before 5.3.18-150300.59.179.1
dtb-aarch64: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debugsource: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.179.1
kernel-zfcpdump: before 5.3.18-150300.59.179.1
kernel-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-extra: before 5.3.18-150300.59.179.1
kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-preempt-devel: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt: before 5.3.18-150300.59.179.1
dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-debuginfo: before 5.3.18-150300.59.179.1
dlm-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-optional: before 5.3.18-150300.59.179.1
kernel-preempt-debugsource: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-livepatch-5_3_18-150300_59_179-preempt-debuginfo: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-preempt: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default: before 1-150300.7.3.2
kernel-livepatch-SLE15-SP3_Update_49-debugsource: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default-debuginfo: before 1-150300.7.3.2
kernel-default: before 5.3.18-150300.59.179.1
kselftests-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-build: before 5.3.18-150300.59.179.1
reiserfs-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional: before 5.3.18-150300.59.179.1
kernel-default-devel: before 5.3.18-150300.59.179.1
dlm-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-debugsource: before 5.3.18-150300.59.179.1
kernel-default-livepatch: before 5.3.18-150300.59.179.1
kernel-default-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra: before 5.3.18-150300.59.179.1
ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-base-rebuild: before 5.3.18-150300.59.179.1.150300.18.105.2
cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-obs-build-debugsource: before 5.3.18-150300.59.179.1
ocfs2-kmp-default: before 5.3.18-150300.59.179.1
dlm-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-base: before 5.3.18-150300.59.179.1.150300.18.105.2
reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-default: before 5.3.18-150300.59.179.1
gfs2-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-qa: before 5.3.18-150300.59.179.1
kernel-syms: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel: before 5.3.18-150300.59.179.1
kernel-debug-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-devel: before 5.3.18-150300.59.179.1
kernel-kvmsmall: before 5.3.18-150300.59.179.1
kernel-debug: before 5.3.18-150300.59.179.1
kernel-macros: before 5.3.18-150300.59.179.1
kernel-docs-html: before 5.3.18-150300.59.179.1
kernel-devel: before 5.3.18-150300.59.179.1
kernel-source: before 5.3.18-150300.59.179.1
kernel-source-vanilla: before 5.3.18-150300.59.179.1
kernel-docs: before 5.3.18-150300.59.179.1
CPE2.3http://www.suse.com/support/update/announcement/2024/suse-su-20243585-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU97563
Risk: Low
CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-46774
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the SYSCALL_DEFINE1() function in arch/powerpc/kernel/rtas.c. A local user can perform a denial of service (DoS) attack.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Live Patching: 15-SP3
SUSE Linux Enterprise Micro for Rancher: 5.2
SUSE Linux Enterprise Server 15 SP3 Business Critical Linux: 15-SP3
SUSE Linux Enterprise High Availability Extension 15: SP3
SUSE Linux Enterprise Server for SAP Applications 15: SP3
SUSE Linux Enterprise Server 15 SP3 LTSS: 15-SP3
SUSE Linux Enterprise Server 15: SP3
SUSE Linux Enterprise High Performance Computing LTSS 15: SP3
SUSE Linux Enterprise High Performance Computing 15: SP3
SUSE Enterprise Storage: 7.1
SUSE Manager Retail Branch Server: 4.2
SUSE Linux Enterprise Micro: 5.1 - 5.2
openSUSE Leap: 15.3
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
kernel-64kb: before 5.3.18-150300.59.179.1
dtb-hisilicon: before 5.3.18-150300.59.179.1
dtb-lg: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.179.1
dtb-nvidia: before 5.3.18-150300.59.179.1
kernel-64kb-debugsource: before 5.3.18-150300.59.179.1
dlm-kmp-64kb: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-mediatek: before 5.3.18-150300.59.179.1
dtb-arm: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-amd: before 5.3.18-150300.59.179.1
dtb-broadcom: before 5.3.18-150300.59.179.1
dtb-apm: before 5.3.18-150300.59.179.1
kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-64kb: before 5.3.18-150300.59.179.1
kernel-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-rockchip: before 5.3.18-150300.59.179.1
dtb-qcom: before 5.3.18-150300.59.179.1
dtb-amlogic: before 5.3.18-150300.59.179.1
dtb-marvell: before 5.3.18-150300.59.179.1
kernel-64kb-optional: before 5.3.18-150300.59.179.1
dtb-altera: before 5.3.18-150300.59.179.1
cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
dtb-freescale: before 5.3.18-150300.59.179.1
dtb-al: before 5.3.18-150300.59.179.1
dtb-socionext: before 5.3.18-150300.59.179.1
dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-extra: before 5.3.18-150300.59.179.1
dtb-xilinx: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.179.1
kernel-64kb-devel: before 5.3.18-150300.59.179.1
gfs2-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-zte: before 5.3.18-150300.59.179.1
kselftests-kmp-64kb: before 5.3.18-150300.59.179.1
dtb-sprd: before 5.3.18-150300.59.179.1
kernel-64kb-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.179.1
dtb-renesas: before 5.3.18-150300.59.179.1
dtb-cavium: before 5.3.18-150300.59.179.1
dtb-allwinner: before 5.3.18-150300.59.179.1
dtb-exynos: before 5.3.18-150300.59.179.1
dtb-aarch64: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debugsource: before 5.3.18-150300.59.179.1
kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.179.1
kernel-zfcpdump: before 5.3.18-150300.59.179.1
kernel-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-extra: before 5.3.18-150300.59.179.1
kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-preempt-devel: before 5.3.18-150300.59.179.1
ocfs2-kmp-preempt: before 5.3.18-150300.59.179.1
dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-debuginfo: before 5.3.18-150300.59.179.1
dlm-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-preempt-optional: before 5.3.18-150300.59.179.1
kernel-preempt-debugsource: before 5.3.18-150300.59.179.1
kselftests-kmp-preempt: before 5.3.18-150300.59.179.1
reiserfs-kmp-preempt: before 5.3.18-150300.59.179.1
kernel-livepatch-5_3_18-150300_59_179-preempt-debuginfo: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-preempt: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default: before 1-150300.7.3.2
kernel-livepatch-SLE15-SP3_Update_49-debugsource: before 1-150300.7.3.2
kernel-livepatch-5_3_18-150300_59_179-default-debuginfo: before 1-150300.7.3.2
kernel-default: before 5.3.18-150300.59.179.1
kselftests-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-build: before 5.3.18-150300.59.179.1
reiserfs-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional: before 5.3.18-150300.59.179.1
kernel-default-devel: before 5.3.18-150300.59.179.1
dlm-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-debugsource: before 5.3.18-150300.59.179.1
kernel-default-livepatch: before 5.3.18-150300.59.179.1
kernel-default-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-extra: before 5.3.18-150300.59.179.1
ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-optional-debuginfo: before 5.3.18-150300.59.179.1
kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-default-base-rebuild: before 5.3.18-150300.59.179.1.150300.18.105.2
cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
kernel-obs-build-debugsource: before 5.3.18-150300.59.179.1
ocfs2-kmp-default: before 5.3.18-150300.59.179.1
dlm-kmp-default: before 5.3.18-150300.59.179.1
kernel-default-base: before 5.3.18-150300.59.179.1.150300.18.105.2
reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.179.1
cluster-md-kmp-default: before 5.3.18-150300.59.179.1
gfs2-kmp-default: before 5.3.18-150300.59.179.1
kernel-obs-qa: before 5.3.18-150300.59.179.1
kernel-syms: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.179.1
kernel-debug-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-debugsource: before 5.3.18-150300.59.179.1
kernel-kvmsmall-devel: before 5.3.18-150300.59.179.1
kernel-debug-debuginfo: before 5.3.18-150300.59.179.1
kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.179.1
kernel-debug-devel: before 5.3.18-150300.59.179.1
kernel-kvmsmall: before 5.3.18-150300.59.179.1
kernel-debug: before 5.3.18-150300.59.179.1
kernel-macros: before 5.3.18-150300.59.179.1
kernel-docs-html: before 5.3.18-150300.59.179.1
kernel-devel: before 5.3.18-150300.59.179.1
kernel-source: before 5.3.18-150300.59.179.1
kernel-source-vanilla: before 5.3.18-150300.59.179.1
kernel-docs: before 5.3.18-150300.59.179.1
CPE2.3http://www.suse.com/support/update/announcement/2024/suse-su-20243585-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.