SUSE update for the Linux Kernel



Risk Medium
Patch available YES
Number of vulnerabilities 49
CVE-ID CVE-2021-47416
CVE-2021-47589
CVE-2022-3435
CVE-2022-45934
CVE-2022-48664
CVE-2022-48947
CVE-2022-48956
CVE-2022-48960
CVE-2022-48962
CVE-2022-48967
CVE-2022-48970
CVE-2022-48988
CVE-2022-48991
CVE-2022-48999
CVE-2022-49003
CVE-2022-49014
CVE-2022-49015
CVE-2022-49023
CVE-2022-49025
CVE-2023-28327
CVE-2023-46343
CVE-2023-52881
CVE-2023-52919
CVE-2023-6270
CVE-2024-27043
CVE-2024-42145
CVE-2024-44947
CVE-2024-45016
CVE-2024-45026
CVE-2024-46813
CVE-2024-46814
CVE-2024-46816
CVE-2024-46817
CVE-2024-46818
CVE-2024-46849
CVE-2024-47668
CVE-2024-47674
CVE-2024-47684
CVE-2024-47706
CVE-2024-47747
CVE-2024-49860
CVE-2024-49867
CVE-2024-49936
CVE-2024-49969
CVE-2024-49974
CVE-2024-49982
CVE-2024-49991
CVE-2024-49995
CVE-2024-50047
CWE-ID CWE-401
CWE-416
CWE-125
CWE-190
CWE-667
CWE-119
CWE-399
CWE-20
CWE-682
CWE-476
CWE-451
Exploitation vector Network
Public exploit Public exploit code for vulnerability #27 is available.
Vulnerable software
 SUSE Enterprise Server 15 SP3 Business Critical
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15 SP3
Operating systems & Components / Operating system

SUSE Linux Enterprise Live Patching
Operating systems & Components / Operating system

SUSE Linux Enterprise Micro for Rancher
Operating systems & Components / Operating system

SUSE Linux Enterprise High Availability Extension 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Server for SAP Applications 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing LTSS 15
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing 15
Operating systems & Components / Operating system

SUSE Enterprise Storage
Operating systems & Components / Operating system

SUSE Manager Retail Branch Server
Operating systems & Components / Operating system

SUSE Linux Enterprise Micro
Operating systems & Components / Operating system

openSUSE Leap
Operating systems & Components / Operating system

SUSE Manager Server
Operating systems & Components / Operating system

SUSE Manager Proxy
Operating systems & Components / Operating system

kernel-64kb
Operating systems & Components / Operating system package or component

dtb-mediatek
Operating systems & Components / Operating system package or component

kernel-64kb-devel-debuginfo
Operating systems & Components / Operating system package or component

dtb-rockchip
Operating systems & Components / Operating system package or component

ocfs2-kmp-64kb
Operating systems & Components / Operating system package or component

kernel-64kb-extra-debuginfo
Operating systems & Components / Operating system package or component

dtb-qcom
Operating systems & Components / Operating system package or component

dtb-sprd
Operating systems & Components / Operating system package or component

dtb-freescale
Operating systems & Components / Operating system package or component

kernel-64kb-debugsource
Operating systems & Components / Operating system package or component

gfs2-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

dtb-cavium
Operating systems & Components / Operating system package or component

kernel-64kb-extra
Operating systems & Components / Operating system package or component

dtb-lg
Operating systems & Components / Operating system package or component

dlm-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

kernel-64kb-debuginfo
Operating systems & Components / Operating system package or component

dtb-hisilicon
Operating systems & Components / Operating system package or component

dtb-altera
Operating systems & Components / Operating system package or component

cluster-md-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

cluster-md-kmp-64kb
Operating systems & Components / Operating system package or component

dtb-al
Operating systems & Components / Operating system package or component

dtb-socionext
Operating systems & Components / Operating system package or component

dtb-allwinner
Operating systems & Components / Operating system package or component

kernel-64kb-livepatch-devel
Operating systems & Components / Operating system package or component

gfs2-kmp-64kb
Operating systems & Components / Operating system package or component

reiserfs-kmp-64kb
Operating systems & Components / Operating system package or component

dtb-nvidia
Operating systems & Components / Operating system package or component

kselftests-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

dtb-marvell
Operating systems & Components / Operating system package or component

kernel-64kb-devel
Operating systems & Components / Operating system package or component

dtb-xilinx
Operating systems & Components / Operating system package or component

dtb-broadcom
Operating systems & Components / Operating system package or component

dtb-amd
Operating systems & Components / Operating system package or component

dtb-arm
Operating systems & Components / Operating system package or component

dtb-renesas
Operating systems & Components / Operating system package or component

kernel-64kb-optional-debuginfo
Operating systems & Components / Operating system package or component

dtb-amlogic
Operating systems & Components / Operating system package or component

reiserfs-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

dtb-zte
Operating systems & Components / Operating system package or component

dtb-apm
Operating systems & Components / Operating system package or component

kselftests-kmp-64kb
Operating systems & Components / Operating system package or component

kernel-64kb-optional
Operating systems & Components / Operating system package or component

ocfs2-kmp-64kb-debuginfo
Operating systems & Components / Operating system package or component

dlm-kmp-64kb
Operating systems & Components / Operating system package or component

dtb-exynos
Operating systems & Components / Operating system package or component

dtb-aarch64
Operating systems & Components / Operating system package or component

kernel-zfcpdump-debuginfo
Operating systems & Components / Operating system package or component

kernel-zfcpdump-debugsource
Operating systems & Components / Operating system package or component

kernel-zfcpdump
Operating systems & Components / Operating system package or component

kernel-preempt
Operating systems & Components / Operating system package or component

kernel-preempt-extra-debuginfo
Operating systems & Components / Operating system package or component

kernel-preempt-devel
Operating systems & Components / Operating system package or component

kernel-preempt-extra
Operating systems & Components / Operating system package or component

kernel-preempt-debugsource
Operating systems & Components / Operating system package or component

kernel-preempt-devel-debuginfo
Operating systems & Components / Operating system package or component

reiserfs-kmp-preempt-debuginfo
Operating systems & Components / Operating system package or component

dlm-kmp-preempt-debuginfo
Operating systems & Components / Operating system package or component

kernel-preempt-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-preempt-debuginfo
Operating systems & Components / Operating system package or component

reiserfs-kmp-preempt
Operating systems & Components / Operating system package or component

kernel-preempt-optional
Operating systems & Components / Operating system package or component

cluster-md-kmp-preempt
Operating systems & Components / Operating system package or component

ocfs2-kmp-preempt
Operating systems & Components / Operating system package or component

dlm-kmp-preempt
Operating systems & Components / Operating system package or component

cluster-md-kmp-preempt-debuginfo
Operating systems & Components / Operating system package or component

ocfs2-kmp-preempt-debuginfo
Operating systems & Components / Operating system package or component

kselftests-kmp-preempt-debuginfo
Operating systems & Components / Operating system package or component

kernel-preempt-optional-debuginfo
Operating systems & Components / Operating system package or component

gfs2-kmp-preempt-debuginfo
Operating systems & Components / Operating system package or component

gfs2-kmp-preempt
Operating systems & Components / Operating system package or component

kselftests-kmp-preempt
Operating systems & Components / Operating system package or component

kernel-livepatch-5_3_18-150300_59_182-preempt
Operating systems & Components / Operating system package or component

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo
Operating systems & Components / Operating system package or component

kernel-livepatch-5_3_18-150300_59_182-default
Operating systems & Components / Operating system package or component

kernel-livepatch-SLE15-SP3_Update_50-debugsource
Operating systems & Components / Operating system package or component

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default
Operating systems & Components / Operating system package or component

kselftests-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-syms
Operating systems & Components / Operating system package or component

ocfs2-kmp-default
Operating systems & Components / Operating system package or component

kernel-default-extra-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-devel
Operating systems & Components / Operating system package or component

kernel-default-optional-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-base-rebuild
Operating systems & Components / Operating system package or component

kernel-obs-build-debugsource
Operating systems & Components / Operating system package or component

dlm-kmp-default
Operating systems & Components / Operating system package or component

kernel-default-debugsource
Operating systems & Components / Operating system package or component

cluster-md-kmp-default
Operating systems & Components / Operating system package or component

kernel-obs-qa
Operating systems & Components / Operating system package or component

kernel-obs-build
Operating systems & Components / Operating system package or component

kernel-default-optional
Operating systems & Components / Operating system package or component

ocfs2-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

gfs2-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

gfs2-kmp-default
Operating systems & Components / Operating system package or component

kernel-default-extra
Operating systems & Components / Operating system package or component

reiserfs-kmp-default
Operating systems & Components / Operating system package or component

cluster-md-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-livepatch-devel
Operating systems & Components / Operating system package or component

reiserfs-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-base
Operating systems & Components / Operating system package or component

kernel-default-livepatch
Operating systems & Components / Operating system package or component

dlm-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-debuginfo
Operating systems & Components / Operating system package or component

kselftests-kmp-default
Operating systems & Components / Operating system package or component

kernel-debug-devel
Operating systems & Components / Operating system package or component

kernel-debug-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-kvmsmall-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-kvmsmall-devel
Operating systems & Components / Operating system package or component

kernel-kvmsmall-debugsource
Operating systems & Components / Operating system package or component

kernel-kvmsmall-debuginfo
Operating systems & Components / Operating system package or component

kernel-debug-debuginfo
Operating systems & Components / Operating system package or component

kernel-debug-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-debug-debugsource
Operating systems & Components / Operating system package or component

kernel-kvmsmall-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-kvmsmall
Operating systems & Components / Operating system package or component

kernel-debug
Operating systems & Components / Operating system package or component

kernel-macros
Operating systems & Components / Operating system package or component

kernel-devel
Operating systems & Components / Operating system package or component

kernel-source-vanilla
Operating systems & Components / Operating system package or component

kernel-source
Operating systems & Components / Operating system package or component

kernel-docs-html
Operating systems & Components / Operating system package or component

kernel-docs
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 49 vulnerabilities.

1) Memory leak

EUVDB-ID: #VU89967

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47416

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the __mdiobus_register() function in drivers/net/phy/mdio_bus.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Use-after-free

EUVDB-ID: #VU92300

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47589

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the igbvf_probe() function in drivers/net/ethernet/intel/igbvf/netdev.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Out-of-bounds read

EUVDB-ID: #VU70499

Risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-3435

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition within the fib_nh_match() function in net/ipv4/fib_semantics.c IPv4 handler. A remote attacker can send specially crafted data to the system, trigger an out-of-bounds read error and read contents of memory on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Integer overflow

EUVDB-ID: #VU70464

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-45934

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to integer overflow within the l2cap_config_req() function in net/bluetooth/l2cap_core.c in Linux kernel. A local user can pass specially crafted L2CAP_CONF_REQ packets to the device, trigger an integer overflow and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Improper locking

EUVDB-ID: #VU92031

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48664

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the close_ctree() function in fs/btrfs/disk-io.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Buffer overflow

EUVDB-ID: #VU99095

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48947

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the l2cap_config_req() function in net/bluetooth/l2cap_core.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Resource management error

EUVDB-ID: #VU99165

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48956

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ip6_fragment() function in net/ipv6/ip6_output.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Input validation error

EUVDB-ID: #VU99207

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48960

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the hix5hd2_rx() function in drivers/net/ethernet/hisilicon/hix5hd2_gmac.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Input validation error

EUVDB-ID: #VU99208

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48962

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the hisi_femac_rx() function in drivers/net/ethernet/hisilicon/hisi_femac.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Input validation error

EUVDB-ID: #VU99211

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48967

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the nci_add_new_protocol() function in net/nfc/nci/ntf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Resource management error

EUVDB-ID: #VU99140

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48970

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the sk_diag_show_rqlen(), sk_diag_fill(), sk_diag_dump() and unix_diag_dump() functions in net/unix/diag.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Improper locking

EUVDB-ID: #VU99197

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48988

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the memcg_write_event_control() function in mm/memcontrol.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) Input validation error

EUVDB-ID: #VU99215

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48991

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the retract_page_tables() function in mm/khugepaged.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

14) Input validation error

EUVDB-ID: #VU99206

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48999

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ipv4_fcnal() function in tools/testing/selftests/net/fib_nexthops.sh, within the fib_nh_match() function in net/ipv4/fib_semantics.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

15) Improper locking

EUVDB-ID: #VU99005

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49003

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the nvme_mpath_revalidate_paths() function in drivers/nvme/host/multipath.c, within the nvme_ns_remove() function in drivers/nvme/host/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

16) Incorrect calculation

EUVDB-ID: #VU99182

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49014

CWE-ID: CWE-682 - Incorrect Calculation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect calculation within the __tun_detach() and tun_detach() functions in drivers/net/tun.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

17) Input validation error

EUVDB-ID: #VU99199

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49015

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the hsr_deliver_master() function in net/hsr/hsr_forward.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

18) Buffer overflow

EUVDB-ID: #VU99098

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49023

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the cfg80211_gen_new_ie() function in net/wireless/scan.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

19) Input validation error

EUVDB-ID: #VU99201

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49025

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the drivers/net/ethernet/mellanox/mlx5/core/eswitch_offloads_termtbl.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

20) NULL pointer dereference

EUVDB-ID: #VU74772

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-28327

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the unix_diag_get_exact() function in net/unix/diag.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

21) NULL pointer dereference

EUVDB-ID: #VU86243

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-46343

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the send_acknowledge() function in net/nfc/nci/spi.c. A local user can pass specially crafted data to the system and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

22) Spoofing attack

EUVDB-ID: #VU89895

Risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-52881

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error within the tcp_ack() function in net/ipv4/tcp_input.c, which can result in system accepting ACK responses for bytes that were never sent. A remote attacker can perform spoofing attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

23) NULL pointer dereference

EUVDB-ID: #VU99255

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52919

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the send_acknowledge() function in net/nfc/nci/spi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

24) Use-after-free

EUVDB-ID: #VU91599

Risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-6270

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the aoecmd_cfg_pkts() function in the ATA over Ethernet (AoE) driver. A local user can trigger a use-after-free error and escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

25) Use-after-free

EUVDB-ID: #VU90178

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27043

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the dvb_register_device() function in drivers/media/dvb-core/dvbdev.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

26) Buffer overflow

EUVDB-ID: #VU95054

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42145

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the MODULE_AUTHOR(), __get_agent(), send_handler(), recv_handler() and ib_umad_read() functions in drivers/infiniband/core/user_mad.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

27) Memory leak

EUVDB-ID: #VU96711

Risk: Low

CVSSv4.0: 5.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2024-44947

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: Yes

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the fuse_notify_store() function in fs/fuse/dev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

28) Use-after-free

EUVDB-ID: #VU97169

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-45016

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the netem_enqueue() function in net/sched/sch_netem.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

29) Buffer overflow

EUVDB-ID: #VU97188

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-45026

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the dasd_eckd_analysis_ccw(), dasd_eckd_build_check_tcw(), dasd_eckd_build_cp_cmd_single(), dasd_eckd_build_cp_tpm_track() and dasd_eckd_dump_sense() functions in drivers/s390/block/dasd_eckd.c, within the dasd_3990_erp_file_prot() function in drivers/s390/block/dasd_3990_erp.c, within the dasd_ese_needs_format(), dasd_int_handler() and list_for_each_entry_safe() functions in drivers/s390/block/dasd.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

30) Out-of-bounds read

EUVDB-ID: #VU97785

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46813

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the dc_get_link_at_index() function in drivers/gpu/drm/amd/display/dc/core/dc_link_exports.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

31) Input validation error

EUVDB-ID: #VU97844

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46814

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the hdmi_14_process_transaction() and dp_11_process_transaction() functions in drivers/gpu/drm/amd/display/dc/hdcp/hdcp_msg.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

32) Resource management error

EUVDB-ID: #VU97829

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46816

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the amdgpu_dm_initialize_drm_device() function in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

33) Resource management error

EUVDB-ID: #VU97830

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46817

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the amdgpu_dm_initialize_drm_device() function in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

34) Input validation error

EUVDB-ID: #VU97842

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46818

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the is_pin_busy(), set_pin_busy(), set_pin_free(), dal_gpio_service_lock() and dal_gpio_service_unlock() functions in drivers/gpu/drm/amd/display/dc/gpio/gpio_service.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

35) Use-after-free

EUVDB-ID: #VU97781

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46849

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the axg_card_add_tdm_loopback() function in sound/soc/meson/axg-card.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

36) Buffer overflow

EUVDB-ID: #VU98376

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47668

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the __genradix_ptr_alloc() function in lib/generic-radix-tree.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

37) Use-after-free

EUVDB-ID: #VU98598

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47674

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the remap_p4d_range() and remap_pfn_range_notrack() functions in mm/memory.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

38) NULL pointer dereference

EUVDB-ID: #VU98980

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47684

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the include/net/tcp.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

39) Use-after-free

EUVDB-ID: #VU98897

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47706

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the bfq_init_rq() function in block/bfq-iosched.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

40) Use-after-free

EUVDB-ID: #VU98888

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47747

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ether3_remove() function in drivers/net/ethernet/seeq/ether3.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

41) Buffer overflow

EUVDB-ID: #VU99194

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49860

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the acpi_device_setup_files() function in drivers/acpi/device_sysfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

42) Use-after-free

EUVDB-ID: #VU98885

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49867

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the close_ctree() function in fs/btrfs/disk-io.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

43) Use-after-free

EUVDB-ID: #VU98873

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49936

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the xenvif_new_hash() and xenvif_flush_hash() functions in drivers/net/xen-netback/hash.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

44) Out-of-bounds read

EUVDB-ID: #VU98905

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49969

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the cm3_helper_translate_curve_to_hw_format() function in drivers/gpu/drm/amd/display/dc/dcn30/dcn30_cm_common.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

45) Input validation error

EUVDB-ID: #VU99220

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49974

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the nfs4_state_create_net() function in fs/nfsd/nfs4state.c, within the nfs4_put_copy() and nfsd4_copy() functions in fs/nfsd/nfs4proc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

46) Use-after-free

EUVDB-ID: #VU98879

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49982

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ata_rw_frameinit(), aoecmd_ata_rw(), resend(), probe() and aoecmd_ata_id() functions in drivers/block/aoe/aoecmd.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

47) Use-after-free

EUVDB-ID: #VU98882

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49991

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the pqm_clean_queue_resource() function in drivers/gpu/drm/amd/amdkfd/kfd_process_queue_manager.c, within the kfd_process_destroy_pdds() function in drivers/gpu/drm/amd/amdkfd/kfd_process.c, within the kfd_free_mqd_cp() function in drivers/gpu/drm/amd/amdkfd/kfd_mqd_manager.c, within the deallocate_hiq_sdma_mqd() function in drivers/gpu/drm/amd/amdkfd/kfd_device_queue_manager.c, within the kfd_gtt_sa_fini() and kgd2kfd_device_exit() functions in drivers/gpu/drm/amd/amdkfd/kfd_device.c, within the kfd_ioctl_create_queue() function in drivers/gpu/drm/amd/amdkfd/kfd_chardev.c, within the amdgpu_amdkfd_free_gtt_mem() function in drivers/gpu/drm/amd/amdgpu/amdgpu_amdkfd.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

48) Buffer overflow

EUVDB-ID: #VU99192

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49995

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the bearer_name_validate() function in net/tipc/bearer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

49) Improper locking

EUVDB-ID: #VU98995

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50047

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the SMB2_negotiate() function in fs/smb/client/smb2pdu.c, within the smb2_get_enc_key(), crypt_message(), smb3_init_transform_rq() and decrypt_raw_data() functions in fs/smb/client/smb2ops.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Enterprise Server 15 SP3 Business Critical: Linux

SUSE Linux Enterprise Server 15 SP3: LTSS

SUSE Linux Enterprise Live Patching: 15-SP3

SUSE Linux Enterprise Micro for Rancher: 5.2

SUSE Linux Enterprise High Availability Extension 15: SP3

SUSE Linux Enterprise Server for SAP Applications 15: SP3

SUSE Linux Enterprise Server 15: SP3

SUSE Linux Enterprise High Performance Computing LTSS 15: SP3

SUSE Linux Enterprise High Performance Computing 15: SP3

SUSE Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

SUSE Linux Enterprise Micro: 5.1 - 5.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

kernel-64kb: before 5.3.18-150300.59.182.1

dtb-mediatek: before 5.3.18-150300.59.182.1

kernel-64kb-devel-debuginfo: before 5.3.18-150300.59.182.1

dtb-rockchip: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-extra-debuginfo: before 5.3.18-150300.59.182.1

dtb-qcom: before 5.3.18-150300.59.182.1

dtb-sprd: before 5.3.18-150300.59.182.1

dtb-freescale: before 5.3.18-150300.59.182.1

kernel-64kb-debugsource: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-cavium: before 5.3.18-150300.59.182.1

kernel-64kb-extra: before 5.3.18-150300.59.182.1

dtb-lg: before 5.3.18-150300.59.182.1

dlm-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

kernel-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-hisilicon: before 5.3.18-150300.59.182.1

dtb-altera: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

cluster-md-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-al: before 5.3.18-150300.59.182.1

dtb-socionext: before 5.3.18-150300.59.182.1

dtb-allwinner: before 5.3.18-150300.59.182.1

kernel-64kb-livepatch-devel: before 5.3.18-150300.59.182.1

gfs2-kmp-64kb: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-nvidia: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-marvell: before 5.3.18-150300.59.182.1

kernel-64kb-devel: before 5.3.18-150300.59.182.1

dtb-xilinx: before 5.3.18-150300.59.182.1

dtb-broadcom: before 5.3.18-150300.59.182.1

dtb-amd: before 5.3.18-150300.59.182.1

dtb-arm: before 5.3.18-150300.59.182.1

dtb-renesas: before 5.3.18-150300.59.182.1

kernel-64kb-optional-debuginfo: before 5.3.18-150300.59.182.1

dtb-amlogic: before 5.3.18-150300.59.182.1

reiserfs-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dtb-zte: before 5.3.18-150300.59.182.1

dtb-apm: before 5.3.18-150300.59.182.1

kselftests-kmp-64kb: before 5.3.18-150300.59.182.1

kernel-64kb-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-64kb-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-64kb: before 5.3.18-150300.59.182.1

dtb-exynos: before 5.3.18-150300.59.182.1

dtb-aarch64: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debuginfo: before 5.3.18-150300.59.182.1

kernel-zfcpdump-debugsource: before 5.3.18-150300.59.182.1

kernel-zfcpdump: before 5.3.18-150300.59.182.1

kernel-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-devel: before 5.3.18-150300.59.182.1

kernel-preempt-extra: before 5.3.18-150300.59.182.1

kernel-preempt-debugsource: before 5.3.18-150300.59.182.1

kernel-preempt-devel-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

dlm-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-preempt-debuginfo: before 5.3.18-150300.59.182.1

reiserfs-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-preempt-optional: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt: before 5.3.18-150300.59.182.1

dlm-kmp-preempt: before 5.3.18-150300.59.182.1

cluster-md-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

ocfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

kernel-preempt-optional-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-preempt: before 5.3.18-150300.59.182.1

kselftests-kmp-preempt: before 5.3.18-150300.59.182.1

kernel-livepatch-5_3_18-150300_59_182-preempt: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default: before 1-150300.7.3.1

kernel-livepatch-SLE15-SP3_Update_50-debugsource: before 1-150300.7.3.1

kernel-livepatch-5_3_18-150300_59_182-default-debuginfo: before 1-150300.7.3.1

kernel-default: before 5.3.18-150300.59.182.1

kselftests-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-syms: before 5.3.18-150300.59.182.1

ocfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel: before 5.3.18-150300.59.182.1

kernel-default-optional-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base-rebuild: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-obs-build-debugsource: before 5.3.18-150300.59.182.1

dlm-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-debugsource: before 5.3.18-150300.59.182.1

cluster-md-kmp-default: before 5.3.18-150300.59.182.1

kernel-obs-qa: before 5.3.18-150300.59.182.1

kernel-obs-build: before 5.3.18-150300.59.182.1

kernel-default-optional: before 5.3.18-150300.59.182.1

ocfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

gfs2-kmp-default: before 5.3.18-150300.59.182.1

kernel-default-extra: before 5.3.18-150300.59.182.1

reiserfs-kmp-default: before 5.3.18-150300.59.182.1

cluster-md-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-livepatch-devel: before 5.3.18-150300.59.182.1

reiserfs-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-base: before 5.3.18-150300.59.182.1.150300.18.107.1

kernel-default-livepatch: before 5.3.18-150300.59.182.1

dlm-kmp-default-debuginfo: before 5.3.18-150300.59.182.1

kernel-default-debuginfo: before 5.3.18-150300.59.182.1

kselftests-kmp-default: before 5.3.18-150300.59.182.1

kernel-debug-devel: before 5.3.18-150300.59.182.1

kernel-debug-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-livepatch-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-debug-debugsource: before 5.3.18-150300.59.182.1

kernel-kvmsmall-devel-debuginfo: before 5.3.18-150300.59.182.1

kernel-kvmsmall: before 5.3.18-150300.59.182.1

kernel-debug: before 5.3.18-150300.59.182.1

kernel-macros: before 5.3.18-150300.59.182.1

kernel-devel: before 5.3.18-150300.59.182.1

kernel-source-vanilla: before 5.3.18-150300.59.182.1

kernel-source: before 5.3.18-150300.59.182.1

kernel-docs-html: before 5.3.18-150300.59.182.2

kernel-docs: before 5.3.18-150300.59.182.2

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20244140-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###