SUSE update for the Linux Kernel



Risk Medium
Patch available YES
Number of vulnerabilities 211
CVE-ID CVE-2021-47416
CVE-2021-47534
CVE-2022-3435
CVE-2022-45934
CVE-2022-48664
CVE-2022-48879
CVE-2022-48946
CVE-2022-48947
CVE-2022-48948
CVE-2022-48949
CVE-2022-48951
CVE-2022-48953
CVE-2022-48954
CVE-2022-48955
CVE-2022-48956
CVE-2022-48957
CVE-2022-48958
CVE-2022-48959
CVE-2022-48960
CVE-2022-48961
CVE-2022-48962
CVE-2022-48966
CVE-2022-48967
CVE-2022-48968
CVE-2022-48969
CVE-2022-48970
CVE-2022-48971
CVE-2022-48972
CVE-2022-48973
CVE-2022-48975
CVE-2022-48977
CVE-2022-48978
CVE-2022-48980
CVE-2022-48981
CVE-2022-48985
CVE-2022-48987
CVE-2022-48988
CVE-2022-48991
CVE-2022-48992
CVE-2022-48994
CVE-2022-48995
CVE-2022-48997
CVE-2022-48999
CVE-2022-49000
CVE-2022-49002
CVE-2022-49003
CVE-2022-49005
CVE-2022-49006
CVE-2022-49007
CVE-2022-49010
CVE-2022-49011
CVE-2022-49012
CVE-2022-49014
CVE-2022-49015
CVE-2022-49016
CVE-2022-49017
CVE-2022-49019
CVE-2022-49020
CVE-2022-49021
CVE-2022-49022
CVE-2022-49023
CVE-2022-49024
CVE-2022-49025
CVE-2022-49026
CVE-2022-49027
CVE-2022-49028
CVE-2022-49029
CVE-2022-49031
CVE-2022-49032
CVE-2023-2166
CVE-2023-28327
CVE-2023-52766
CVE-2023-52800
CVE-2023-52881
CVE-2023-52919
CVE-2023-6270
CVE-2024-27043
CVE-2024-36244
CVE-2024-36957
CVE-2024-39476
CVE-2024-40965
CVE-2024-42145
CVE-2024-42226
CVE-2024-42253
CVE-2024-44931
CVE-2024-44947
CVE-2024-44958
CVE-2024-45016
CVE-2024-45025
CVE-2024-46678
CVE-2024-46716
CVE-2024-46719
CVE-2024-46754
CVE-2024-46770
CVE-2024-46775
CVE-2024-46777
CVE-2024-46809
CVE-2024-46811
CVE-2024-46813
CVE-2024-46814
CVE-2024-46815
CVE-2024-46816
CVE-2024-46817
CVE-2024-46818
CVE-2024-46826
CVE-2024-46828
CVE-2024-46834
CVE-2024-46840
CVE-2024-46841
CVE-2024-46848
CVE-2024-46849
CVE-2024-46854
CVE-2024-46855
CVE-2024-46857
CVE-2024-47660
CVE-2024-47661
CVE-2024-47664
CVE-2024-47668
CVE-2024-47672
CVE-2024-47673
CVE-2024-47674
CVE-2024-47684
CVE-2024-47685
CVE-2024-47692
CVE-2024-47704
CVE-2024-47705
CVE-2024-47706
CVE-2024-47707
CVE-2024-47710
CVE-2024-47720
CVE-2024-47727
CVE-2024-47730
CVE-2024-47738
CVE-2024-47739
CVE-2024-47745
CVE-2024-47747
CVE-2024-47748
CVE-2024-49858
CVE-2024-49860
CVE-2024-49866
CVE-2024-49867
CVE-2024-49881
CVE-2024-49882
CVE-2024-49883
CVE-2024-49886
CVE-2024-49890
CVE-2024-49892
CVE-2024-49894
CVE-2024-49895
CVE-2024-49896
CVE-2024-49897
CVE-2024-49899
CVE-2024-49901
CVE-2024-49906
CVE-2024-49908
CVE-2024-49909
CVE-2024-49911
CVE-2024-49912
CVE-2024-49913
CVE-2024-49914
CVE-2024-49917
CVE-2024-49918
CVE-2024-49919
CVE-2024-49920
CVE-2024-49922
CVE-2024-49923
CVE-2024-49929
CVE-2024-49930
CVE-2024-49933
CVE-2024-49936
CVE-2024-49939
CVE-2024-49946
CVE-2024-49949
CVE-2024-49954
CVE-2024-49955
CVE-2024-49958
CVE-2024-49959
CVE-2024-49960
CVE-2024-49962
CVE-2024-49967
CVE-2024-49969
CVE-2024-49973
CVE-2024-49974
CVE-2024-49975
CVE-2024-49982
CVE-2024-49991
CVE-2024-49993
CVE-2024-49995
CVE-2024-49996
CVE-2024-50000
CVE-2024-50001
CVE-2024-50002
CVE-2024-50006
CVE-2024-50014
CVE-2024-50019
CVE-2024-50024
CVE-2024-50028
CVE-2024-50033
CVE-2024-50035
CVE-2024-50041
CVE-2024-50045
CVE-2024-50046
CVE-2024-50047
CVE-2024-50048
CVE-2024-50049
CVE-2024-50055
CVE-2024-50058
CVE-2024-50059
CVE-2024-50061
CVE-2024-50063
CVE-2024-50081
CWE-ID CWE-401
CWE-125
CWE-190
CWE-667
CWE-476
CWE-119
CWE-787
CWE-399
CWE-415
CWE-200
CWE-20
CWE-388
CWE-835
CWE-682
CWE-416
CWE-451
CWE-193
CWE-617
CWE-369
CWE-908
CWE-362
CWE-665
Exploitation vector Network
Public exploit Public exploit code for vulnerability #86 is available.
Vulnerable software
 openSUSE Leap Micro
Operating systems & Components / Operating system

SUSE Linux Enterprise Micro
Operating systems & Components / Operating system

SUSE Real Time Module
Operating systems & Components / Operating system

SUSE Linux Enterprise Live Patching
Operating systems & Components / Operating system

SUSE Linux Enterprise Server for SAP Applications 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Real Time 15
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing 15
Operating systems & Components / Operating system

openSUSE Leap
Operating systems & Components / Operating system

kernel-rt-livepatch
Operating systems & Components / Operating system package or component

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo
Operating systems & Components / Operating system package or component

reiserfs-kmp-rt-debuginfo
Operating systems & Components / Operating system package or component

kselftests-kmp-rt-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt-extra-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt-optional-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt-extra
Operating systems & Components / Operating system package or component

kernel-livepatch-5_14_21-150500_13_76-rt
Operating systems & Components / Operating system package or component

kernel-rt-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-rt-optional
Operating systems & Components / Operating system package or component

kernel-rt_debug-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource
Operating systems & Components / Operating system package or component

kselftests-kmp-rt
Operating systems & Components / Operating system package or component

reiserfs-kmp-rt
Operating systems & Components / Operating system package or component

kernel-rt
Operating systems & Components / Operating system package or component

kernel-rt_debug
Operating systems & Components / Operating system package or component

kernel-devel-rt
Operating systems & Components / Operating system package or component

kernel-source-rt
Operating systems & Components / Operating system package or component

gfs2-kmp-rt
Operating systems & Components / Operating system package or component

kernel-rt-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt_debug-vdso-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt-devel
Operating systems & Components / Operating system package or component

kernel-rt-debugsource
Operating systems & Components / Operating system package or component

kernel-rt-vdso-debuginfo
Operating systems & Components / Operating system package or component

kernel-syms-rt
Operating systems & Components / Operating system package or component

cluster-md-kmp-rt
Operating systems & Components / Operating system package or component

kernel-rt_debug-debuginfo
Operating systems & Components / Operating system package or component

cluster-md-kmp-rt-debuginfo
Operating systems & Components / Operating system package or component

ocfs2-kmp-rt-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt-vdso
Operating systems & Components / Operating system package or component

kernel-rt_debug-devel-debuginfo
Operating systems & Components / Operating system package or component

ocfs2-kmp-rt
Operating systems & Components / Operating system package or component

dlm-kmp-rt
Operating systems & Components / Operating system package or component

kernel-rt_debug-vdso
Operating systems & Components / Operating system package or component

kernel-rt_debug-devel
Operating systems & Components / Operating system package or component

gfs2-kmp-rt-debuginfo
Operating systems & Components / Operating system package or component

dlm-kmp-rt-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt_debug-debugsource
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 211 vulnerabilities.

1) Memory leak

EUVDB-ID: #VU89967

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47416

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the __mdiobus_register() function in drivers/net/phy/mdio_bus.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Memory leak

EUVDB-ID: #VU91617

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-47534

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the vc4_atomic_commit_tail() function in drivers/gpu/drm/vc4/vc4_kms.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Out-of-bounds read

EUVDB-ID: #VU70499

Risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-3435

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition within the fib_nh_match() function in net/ipv4/fib_semantics.c IPv4 handler. A remote attacker can send specially crafted data to the system, trigger an out-of-bounds read error and read contents of memory on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Integer overflow

EUVDB-ID: #VU70464

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-45934

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to integer overflow within the l2cap_config_req() function in net/bluetooth/l2cap_core.c in Linux kernel. A local user can pass specially crafted L2CAP_CONF_REQ packets to the device, trigger an integer overflow and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Improper locking

EUVDB-ID: #VU92031

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48664

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the close_ctree() function in fs/btrfs/disk-io.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) NULL pointer dereference

EUVDB-ID: #VU96355

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48879

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the efisubsys_init() and generic_ops_unregister() functions in drivers/firmware/efi/efi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Buffer overflow

EUVDB-ID: #VU99094

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48946

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the udf_truncate_tail_extent() function in fs/udf/truncate.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Buffer overflow

EUVDB-ID: #VU99095

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48947

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the l2cap_config_req() function in net/bluetooth/l2cap_core.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Buffer overflow

EUVDB-ID: #VU99096

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48948

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the uvc_function_ep0_complete() function in drivers/usb/gadget/function/f_uvc.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Buffer overflow

EUVDB-ID: #VU99153

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48949

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the igb_vf_reset_msg() function in drivers/net/ethernet/intel/igb/igb_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Out-of-bounds write

EUVDB-ID: #VU99179

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48951

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to an out-of-bounds write within the snd_soc_put_volsw_sx() function in sound/soc/soc-ops.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Resource management error

EUVDB-ID: #VU99139

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48953

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the cmos_check_acpi_rtc_status(), cmos_pnp_probe(), cmos_of_init() and cmos_platform_probe() functions in drivers/rtc/rtc-cmos.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) Double free

EUVDB-ID: #VU99050

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48954

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the qeth_l2_br2dev_worker() and dev_put() functions in drivers/s390/net/qeth_l2_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

14) Information disclosure

EUVDB-ID: #VU99103

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48955

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the tbnet_open() function in drivers/net/thunderbolt.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

15) Resource management error

EUVDB-ID: #VU99165

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48956

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ip6_fragment() function in net/ipv6/ip6_output.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

16) Information disclosure

EUVDB-ID: #VU99104

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48957

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the dpaa2_switch_acl_entry_add() and dpaa2_switch_acl_entry_remove() functions in drivers/net/ethernet/freescale/dpaa2/dpaa2-switch-flower.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

17) Information disclosure

EUVDB-ID: #VU99105

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48958

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the greth_init_rings() function in drivers/net/ethernet/aeroflex/greth.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

18) Information disclosure

EUVDB-ID: #VU99106

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48959

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the sja1105_setup_devlink_regions() function in drivers/net/dsa/sja1105/sja1105_devlink.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

19) Input validation error

EUVDB-ID: #VU99207

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48960

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the hix5hd2_rx() function in drivers/net/ethernet/hisilicon/hix5hd2_gmac.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

20) Resource management error

EUVDB-ID: #VU99164

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48961

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the mdio_device_free() and EXPORT_SYMBOL() functions in drivers/net/phy/mdio_device.c, within the of_mdiobus_register_device() function in drivers/net/mdio/of_mdio.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

21) Input validation error

EUVDB-ID: #VU99208

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48962

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the hisi_femac_rx() function in drivers/net/ethernet/hisilicon/hisi_femac.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

22) Input validation error

EUVDB-ID: #VU99210

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48966

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the mvneta_config_rss() function in drivers/net/ethernet/marvell/mvneta.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

23) Input validation error

EUVDB-ID: #VU99211

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48967

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the nci_add_new_protocol() function in net/nfc/nci/ntf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

24) Information disclosure

EUVDB-ID: #VU99109

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48968

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the otx2_init_tc() function in drivers/net/ethernet/marvell/octeontx2/nic/otx2_tc.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

25) Resource management error

EUVDB-ID: #VU99131

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48969

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the netfront_resume() function in drivers/net/xen-netfront.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

26) Resource management error

EUVDB-ID: #VU99140

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48970

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the sk_diag_show_rqlen(), sk_diag_fill(), sk_diag_dump() and unix_diag_dump() functions in net/unix/diag.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

27) Resource management error

EUVDB-ID: #VU99141

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48971

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the bt_init() and sock_unregister() functions in net/bluetooth/af_bluetooth.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

28) Resource management error

EUVDB-ID: #VU99163

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48972

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ieee802154_if_add() function in net/mac802154/iface.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

29) Improper error handling

EUVDB-ID: #VU99065

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48973

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the ioport_unmap() and amd_gpio_exit() functions in drivers/gpio/gpio-amd8111.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

30) Information disclosure

EUVDB-ID: #VU99110

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48975

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the gpiochip_setup_dev(), gpiochip_add_data_with_key(), gpiochip_remove_pin_ranges() and ida_free() functions in drivers/gpio/gpiolib.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

31) Input validation error

EUVDB-ID: #VU99217

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48977

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the can_rcv() and canfd_rcv() functions in net/can/af_can.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

32) Resource management error

EUVDB-ID: #VU99142

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48978

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the snto32() function in drivers/hid/hid-core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

33) Improper locking

EUVDB-ID: #VU99002

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48980

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the sja1105_init_l2_policing() function in drivers/net/dsa/sja1105/sja1105_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

34) Double free

EUVDB-ID: #VU99051

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48981

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the drm_gem_shmem_mmap() function in drivers/gpu/drm/drm_gem_shmem_helper.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

35) Buffer overflow

EUVDB-ID: #VU99097

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48985

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the mana_poll_rx_cq() and mana_cq_handler() functions in drivers/net/ethernet/microsoft/mana/mana_en.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

36) Input validation error

EUVDB-ID: #VU99035

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48987

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the v4l2_valid_dv_timings() function in drivers/media/v4l2-core/v4l2-dv-timings.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

37) Improper locking

EUVDB-ID: #VU99197

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48988

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the memcg_write_event_control() function in mm/memcontrol.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

38) Input validation error

EUVDB-ID: #VU99215

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48991

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the retract_page_tables() function in mm/khugepaged.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

39) Input validation error

EUVDB-ID: #VU99214

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48992

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the dpcm_be_reparent() function in sound/soc/soc-pcm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

40) Input validation error

EUVDB-ID: #VU99195

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48994

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the EXPORT_SYMBOL() and snd_seq_expand_var_event() functions in sound/core/seq/seq_memory.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

41) Double free

EUVDB-ID: #VU99052

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48995

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the raydium_i2c_send() function in drivers/input/touchscreen/raydium_i2c_ts.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

42) Improper locking

EUVDB-ID: #VU99004

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48997

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the tpm_pm_suspend() function in drivers/char/tpm/tpm-interface.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

43) Input validation error

EUVDB-ID: #VU99206

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-48999

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ipv4_fcnal() function in tools/testing/selftests/net/fib_nexthops.sh, within the fib_nh_match() function in net/ipv4/fib_semantics.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

44) Improper error handling

EUVDB-ID: #VU99060

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49000

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the has_external_pci() function in drivers/iommu/intel/iommu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

45) Improper error handling

EUVDB-ID: #VU99066

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49002

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the dmar_dev_scope_init() function in drivers/iommu/dmar.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

46) Improper locking

EUVDB-ID: #VU99005

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49003

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the nvme_mpath_revalidate_paths() function in drivers/nvme/host/multipath.c, within the nvme_ns_remove() function in drivers/nvme/host/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

47) Input validation error

EUVDB-ID: #VU99213

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49005

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the snd_soc_put_volsw_sx() function in sound/soc/soc-ops.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

48) Infinite loop

EUVDB-ID: #VU99119

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49006

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the probe_remove_event_call() function in kernel/trace/trace_events.c, within the dyn_event_release() and dyn_events_release_all() functions in kernel/trace/trace_dynevent.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

49) Input validation error

EUVDB-ID: #VU99036

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49007

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the nilfs_dat_commit_free() function in fs/nilfs2/dat.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

50) Input validation error

EUVDB-ID: #VU99037

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49010

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the coretemp_remove_core() function in drivers/hwmon/coretemp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

51) Information disclosure

EUVDB-ID: #VU99113

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49011

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the adjust_tjmax() function in drivers/hwmon/coretemp.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

52) Information disclosure

EUVDB-ID: #VU99114

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49012

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the afs_put_server() function in fs/afs/server.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

53) Incorrect calculation

EUVDB-ID: #VU99182

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49014

CWE-ID: CWE-682 - Incorrect Calculation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect calculation within the __tun_detach() and tun_detach() functions in drivers/net/tun.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

54) Input validation error

EUVDB-ID: #VU99199

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49015

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the hsr_deliver_master() function in net/hsr/hsr_forward.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

55) Resource management error

EUVDB-ID: #VU99162

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49016

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the phy_mdio_device_free() function in drivers/net/phy/phy_device.c, within the fwnode_mdiobus_register_phy() function in drivers/net/mdio/fwnode_mdio.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

56) Double free

EUVDB-ID: #VU99053

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49017

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the tipc_crypto_key_synch() function in net/tipc/crypto.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

57) Infinite loop

EUVDB-ID: #VU99120

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49019

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the nixge_hw_dma_bd_release() function in drivers/net/ethernet/ni/nixge.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

58) Information disclosure

EUVDB-ID: #VU99116

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49020

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the p9_socket_open() function in net/9p/trans_fd.c. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

59) Resource management error

EUVDB-ID: #VU99136

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49021

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the module_put() function in drivers/net/phy/phy_device.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

60) Input validation error

EUVDB-ID: #VU99200

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49022

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ieee80211_get_rate_duration() function in net/mac80211/airtime.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

61) Buffer overflow

EUVDB-ID: #VU99098

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49023

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the cfg80211_gen_new_ie() function in net/wireless/scan.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

62) Improper error handling

EUVDB-ID: #VU99068

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49024

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the m_can_pci_probe() and m_can_pci_remove() functions in drivers/net/can/m_can/m_can_pci.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

63) Input validation error

EUVDB-ID: #VU99201

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49025

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the drivers/net/ethernet/mellanox/mlx5/core/eswitch_offloads_termtbl.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

64) Double free

EUVDB-ID: #VU99054

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49026

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the e100_xmit_prepare() function in drivers/net/ethernet/intel/e100.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

65) Improper locking

EUVDB-ID: #VU99007

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49027

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the iavf_init_module() function in drivers/net/ethernet/intel/iavf/iavf_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

66) Improper locking

EUVDB-ID: #VU99008

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49028

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ixgbevf_init_module() function in drivers/net/ethernet/intel/ixgbevf/ixgbevf_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

67) Resource management error

EUVDB-ID: #VU99161

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49029

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ibmpex_register_bmc() function in drivers/hwmon/ibmpex.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

68) Input validation error

EUVDB-ID: #VU99202

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49031

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the afe4403_read_raw() function in drivers/iio/health/afe4403.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

69) Out-of-bounds write

EUVDB-ID: #VU99180

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49032

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to an out-of-bounds write within the afe4404_read_raw() and afe4404_write_raw() functions in drivers/iio/health/afe4404.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

70) NULL pointer dereference

EUVDB-ID: #VU79495

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-2166

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in net/can/af_can.c when processing CAN frames. A local user can pass specially crafted data to the system and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

71) NULL pointer dereference

EUVDB-ID: #VU74772

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-28327

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the unix_diag_get_exact() function in net/unix/diag.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

72) Out-of-bounds read

EUVDB-ID: #VU91086

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52766

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the hci_dma_irq_handler() function in drivers/i3c/master/mipi-i3c-hci/dma.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

73) Use-after-free

EUVDB-ID: #VU90071

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52800

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ath11k_htt_pktlog() function in drivers/net/wireless/ath/ath11k/dp_rx.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

74) Spoofing attack

EUVDB-ID: #VU89895

Risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-52881

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error within the tcp_ack() function in net/ipv4/tcp_input.c, which can result in system accepting ACK responses for bytes that were never sent. A remote attacker can perform spoofing attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

75) NULL pointer dereference

EUVDB-ID: #VU99255

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-52919

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the send_acknowledge() function in net/nfc/nci/spi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

76) Use-after-free

EUVDB-ID: #VU91599

Risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-6270

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the aoecmd_cfg_pkts() function in the ATA over Ethernet (AoE) driver. A local user can trigger a use-after-free error and escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

77) Use-after-free

EUVDB-ID: #VU90178

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-27043

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the dvb_register_device() function in drivers/media/dvb-core/dvbdev.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

78) Resource management error

EUVDB-ID: #VU93252

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36244

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the parse_taprio_schedule() function in net/sched/sch_taprio.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

79) Off-by-one

EUVDB-ID: #VU91171

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-36957

CWE-ID: CWE-193 - Off-by-one Error

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an off-by-one error within the rvu_dbg_qsize_write() function in drivers/net/ethernet/marvell/octeontx2/af/rvu_debugfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

80) Improper locking

EUVDB-ID: #VU93824

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-39476

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the raid5d() function in drivers/md/raid5.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

81) Improper locking

EUVDB-ID: #VU94276

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-40965

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the lpi2c_imx_config() and lpi2c_imx_probe() functions in drivers/i2c/busses/i2c-imx-lpi2c.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

82) Buffer overflow

EUVDB-ID: #VU95054

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42145

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the MODULE_AUTHOR(), __get_agent(), send_handler(), recv_handler() and ib_umad_read() functions in drivers/infiniband/core/user_mad.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

83) Resource management error

EUVDB-ID: #VU95063

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42226

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the handle_tx_event() function in drivers/usb/host/xhci-ring.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

84) Resource management error

EUVDB-ID: #VU95562

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-42253

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the pca953x_irq_bus_sync_unlock() function in drivers/gpio/gpio-pca953x.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

85) Memory leak

EUVDB-ID: #VU96512

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-44931

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the gpiochip_get_desc() function in drivers/gpio/gpiolib.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

86) Memory leak

EUVDB-ID: #VU96711

Risk: Low

CVSSv4.0: 5.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2024-44947

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: Yes

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the fuse_notify_store() function in fs/fuse/dev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

87) Resource management error

EUVDB-ID: #VU96880

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-44958

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the sched_cpu_deactivate() function in kernel/sched/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

88) Use-after-free

EUVDB-ID: #VU97169

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-45016

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the netem_enqueue() function in net/sched/sch_netem.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

89) Incorrect calculation

EUVDB-ID: #VU97193

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-45025

CWE-ID: CWE-682 - Incorrect Calculation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect calculation within the free_fdtable_rcu(), copy_fdtable() and dup_fd() functions in fs/file.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

90) Improper locking

EUVDB-ID: #VU97266

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46678

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the bond_ipsec_add_sa(), bond_ipsec_add_sa_all(), bond_ipsec_del_sa(), bond_ipsec_del_sa_all(), bond_setup() and bond_uninit() functions in drivers/net/bonding/bond_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

91) Input validation error

EUVDB-ID: #VU97572

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46716

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the msgdma_free_descriptor() and msgdma_chan_desc_cleanup() functions in drivers/dma/altera-msgdma.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

92) NULL pointer dereference

EUVDB-ID: #VU97534

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46719

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the drivers/usb/typec/ucsi/ucsi.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

93) Input validation error

EUVDB-ID: #VU97566

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46754

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the net/core/filter.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

94) NULL pointer dereference

EUVDB-ID: #VU97520

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46770

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ice_prepare_for_reset(), ice_update_pf_netdev_link() and ice_rebuild() functions in drivers/net/ethernet/intel/ice/ice_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

95) Input validation error

EUVDB-ID: #VU97568

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46775

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the perform_link_training_with_retries() function in drivers/gpu/drm/amd/display/dc/link/protocols/link_dp_training.c, within the hubbub2_program_watermarks() function in drivers/gpu/drm/amd/display/dc/dcn20/dcn20_hubbub.c, within the dc_dmub_srv_cmd_run_list() and dc_dmub_srv_get_visual_confirm_color_cmd() functions in drivers/gpu/drm/amd/display/dc/dc_dmub_srv.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

96) Integer overflow

EUVDB-ID: #VU97550

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46777

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer overflow within the udf_fill_partdesc_info() function in fs/udf/super.c. A local user can execute arbitrary code.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

97) Improper error handling

EUVDB-ID: #VU97813

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46809

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the get_ss_info_v3_1(), get_ss_info_from_internal_ss_info_tbl_V2_1(), get_ss_info_from_ss_info_table(), get_ss_entry_number_from_ss_info_tbl(), get_ss_entry_number_from_internal_ss_info_tbl_v2_1() and get_ss_entry_number_from_internal_ss_info_tbl_V3_1() functions in drivers/gpu/drm/amd/display/dc/bios/bios_parser.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

98) Reachable assertion

EUVDB-ID: #VU97812

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46811

CWE-ID: CWE-617 - Reachable Assertion

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to reachable assertion within the dcn321_update_bw_bounding_box_fpu() function in drivers/gpu/drm/amd/display/dc/dml/dcn321/dcn321_fpu.c, within the dcn32_update_bw_bounding_box_fpu() function in drivers/gpu/drm/amd/display/dc/dml/dcn32/dcn32_fpu.c, within the dcn303_fpu_update_bw_bounding_box() function in drivers/gpu/drm/amd/display/dc/dml/dcn303/dcn303_fpu.c, within the dcn302_fpu_update_bw_bounding_box() function in drivers/gpu/drm/amd/display/dc/dml/dcn302/dcn302_fpu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

99) Out-of-bounds read

EUVDB-ID: #VU97785

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46813

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the dc_get_link_at_index() function in drivers/gpu/drm/amd/display/dc/core/dc_link_exports.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

100) Input validation error

EUVDB-ID: #VU97844

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46814

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the hdmi_14_process_transaction() and dp_11_process_transaction() functions in drivers/gpu/drm/amd/display/dc/hdcp/hdcp_msg.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

101) Input validation error

EUVDB-ID: #VU97843

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46815

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the build_watermark_ranges() function in drivers/gpu/drm/amd/display/dc/clk_mgr/dcn21/rn_clk_mgr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

102) Resource management error

EUVDB-ID: #VU97829

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46816

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the amdgpu_dm_initialize_drm_device() function in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

103) Resource management error

EUVDB-ID: #VU97830

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46817

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the amdgpu_dm_initialize_drm_device() function in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

104) Input validation error

EUVDB-ID: #VU97842

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46818

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the is_pin_busy(), set_pin_busy(), set_pin_free(), dal_gpio_service_lock() and dal_gpio_service_unlock() functions in drivers/gpu/drm/amd/display/dc/gpio/gpio_service.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

105) Input validation error

EUVDB-ID: #VU97839

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46826

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the fs/binfmt_elf.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

106) Out-of-bounds read

EUVDB-ID: #VU97786

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46828

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the net/sched/sch_cake.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

107) Out-of-bounds read

EUVDB-ID: #VU97789

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46834

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the ethtool_set_channels() function in net/ethtool/ioctl.c, within the ethtool_get_max_rxfh_channel() function in net/ethtool/common.c, within the ethnl_set_channels() function in net/ethtool/channels.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

108) Improper locking

EUVDB-ID: #VU97808

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46840

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the reada_walk_down(), walk_down_proc(), do_walk_down() and walk_up_proc() functions in fs/btrfs/extent-tree.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

109) Improper error handling

EUVDB-ID: #VU97814

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46841

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the walk_down_proc() function in fs/btrfs/extent-tree.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

110) Infinite loop

EUVDB-ID: #VU97820

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46848

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the adl_get_hybrid_cpu_type() and intel_pmu_init() functions in arch/x86/events/intel/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

111) Use-after-free

EUVDB-ID: #VU97781

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46849

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the axg_card_add_tdm_loopback() function in sound/soc/meson/axg-card.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

112) Memory leak

EUVDB-ID: #VU97776

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46854

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the dpaa_start_xmit() function in drivers/net/ethernet/freescale/dpaa/dpaa_eth.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

113) Memory leak

EUVDB-ID: #VU97777

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46855

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the nft_socket_eval() function in net/netfilter/nft_socket.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

114) NULL pointer dereference

EUVDB-ID: #VU97801

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-46857

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mlx5_eswitch_set_vepa() and mlx5_eswitch_get_vepa() functions in drivers/net/ethernet/mellanox/mlx5/core/esw/legacy.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

115) Improper locking

EUVDB-ID: #VU98370

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47660

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the __fsnotify_recalc_mask() function in fs/notify/mark.c, within the fsnotify_sb_delete(), __fsnotify_update_child_dentry_flags() and __fsnotify_parent() functions in fs/notify/fsnotify.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

116) Buffer overflow

EUVDB-ID: #VU98371

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47661

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the dmub_abm_set_pipe() function in drivers/gpu/drm/amd/display/dc/hwss/dcn21/dcn21_hwseq.c, within the dmub_abm_set_pipe() function in drivers/gpu/drm/amd/display/dc/dce/dmub_abm_lcd.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

117) Division by zero

EUVDB-ID: #VU98373

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47664

CWE-ID: CWE-369 - Divide By Zero

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a division by zero error within the hisi_spi_probe() function in drivers/spi/spi-hisi-kunpeng.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

118) Buffer overflow

EUVDB-ID: #VU98376

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47668

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the __genradix_ptr_alloc() function in lib/generic-radix-tree.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

119) Improper locking

EUVDB-ID: #VU98368

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47672

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the iwl_mvm_flush_no_vif() and iwl_mvm_mac_flush() functions in drivers/net/wireless/intel/iwlwifi/mvm/mac80211.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

120) Resource management error

EUVDB-ID: #VU98375

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47673

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the iwl_mvm_stop_device() function in drivers/net/wireless/intel/iwlwifi/mvm/ops.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

121) Use-after-free

EUVDB-ID: #VU98598

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47674

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the remap_p4d_range() and remap_pfn_range_notrack() functions in mm/memory.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

122) NULL pointer dereference

EUVDB-ID: #VU98980

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47684

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the include/net/tcp.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

123) Use of uninitialized resource

EUVDB-ID: #VU99087

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47685

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the nf_reject_ip6_tcphdr_put() function in net/ipv6/netfilter/nf_reject_ipv6.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

124) NULL pointer dereference

EUVDB-ID: #VU98983

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47692

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the __cld_pipe_inprogress_downcall() function in fs/nfsd/nfs4recover.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

125) NULL pointer dereference

EUVDB-ID: #VU98986

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47704

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the set_hpo_dp_throttled_vcp_size() and disable_hpo_dp_link_output() functions in drivers/gpu/drm/amd/display/dc/link/hwss/link_hwss_hpo_dp.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

126) NULL pointer dereference

EUVDB-ID: #VU98987

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47705

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the blk_add_partition() function in block/partitions/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

127) Use-after-free

EUVDB-ID: #VU98897

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47706

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the bfq_init_rq() function in block/bfq-iosched.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

128) NULL pointer dereference

EUVDB-ID: #VU98988

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47707

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the rt6_uncached_list_flush_dev() function in net/ipv6/route.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

129) Improper locking

EUVDB-ID: #VU99033

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47710

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the sock_hash_free() function in net/core/sock_map.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

130) NULL pointer dereference

EUVDB-ID: #VU98991

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47720

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn30_set_output_transfer_func() function in drivers/gpu/drm/amd/display/dc/dcn30/dcn30_hwseq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

131) Input validation error

EUVDB-ID: #VU99231

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47727

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the handle_mmio() function in arch/x86/coco/tdx/tdx.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

132) Input validation error

EUVDB-ID: #VU99227

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47730

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the qm_set_vf_mse(), qm_controller_reset_prepare(), qm_master_ooo_check() and qm_soft_reset_prepare() functions in drivers/crypto/hisilicon/qm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

133) Resource management error

EUVDB-ID: #VU99175

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47738

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ieee80211_tx_h_rate_ctrl() function in net/mac80211/tx.c, within the ieee80211_send_scan_probe_req() function in net/mac80211/scan.c, within the ieee80211_get_tx_rates() function in net/mac80211/rate.c, within the ieee80211_mgmt_tx() function in net/mac80211/offchannel.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

134) Improper locking

EUVDB-ID: #VU99021

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47739

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the padata_do_serial() function in kernel/padata.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

135) Input validation error

EUVDB-ID: #VU99229

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47745

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the SYSCALL_DEFINE5() function in mm/mmap.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

136) Use-after-free

EUVDB-ID: #VU98888

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47747

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ether3_remove() function in drivers/net/ethernet/seeq/ether3.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

137) Use-after-free

EUVDB-ID: #VU98889

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47748

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the vhost_vdpa_setup_vq_irq(), vhost_vdpa_vring_ioctl() and vhost_vdpa_open() functions in drivers/vhost/vdpa.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

138) Buffer overflow

EUVDB-ID: #VU99152

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49858

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the efi_retrieve_tpm2_eventlog() function in drivers/firmware/efi/libstub/tpm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

139) Buffer overflow

EUVDB-ID: #VU99194

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49860

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the acpi_device_setup_files() function in drivers/acpi/device_sysfs.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

140) Resource management error

EUVDB-ID: #VU99146

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49866

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the osnoise_hotplug_workfn() function in kernel/trace/trace_osnoise.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

141) Use-after-free

EUVDB-ID: #VU98885

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49867

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the close_ctree() function in fs/btrfs/disk-io.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

142) Memory leak

EUVDB-ID: #VU98852

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49881

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the get_ext_path() function in fs/ext4/move_extent.c, within the ext4_find_extent() and ext4_split_extent_at() functions in fs/ext4/extents.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

143) Improper error handling

EUVDB-ID: #VU99076

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49882

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the ext4_ext_try_to_merge_up() function in fs/ext4/extents.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

144) Use-after-free

EUVDB-ID: #VU98866

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49883

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the fs/ext4/extents.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

145) Out-of-bounds read

EUVDB-ID: #VU98903

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49886

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the _isst_if_get_pci_dev() function in drivers/platform/x86/intel/speed_select_if/isst_if_common.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

146) NULL pointer dereference

EUVDB-ID: #VU98964

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49890

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the init_overdrive_limits() function in drivers/gpu/drm/amd/pm/powerplay/hwmgr/processpptables.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

147) Input validation error

EUVDB-ID: #VU99224

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49892

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the calculate_ttu_cursor() function in drivers/gpu/drm/amd/display/dc/dml/dcn21/display_rq_dlg_calc_21.c, within the calculate_ttu_cursor() function in drivers/gpu/drm/amd/display/dc/dml/dcn20/display_rq_dlg_calc_20v2.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

148) Out-of-bounds read

EUVDB-ID: #VU98912

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49894

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the cm_helper_translate_curve_to_degamma_hw_format() function in drivers/gpu/drm/amd/display/dc/dcn10/dcn10_cm_common.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

149) Out-of-bounds read

EUVDB-ID: #VU98911

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49895

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the cm3_helper_translate_curve_to_degamma_hw_format() function in drivers/gpu/drm/amd/display/dc/dcn30/dcn30_cm_common.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

150) NULL pointer dereference

EUVDB-ID: #VU98962

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49896

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the are_stream_backends_same() function in drivers/gpu/drm/amd/display/dc/core/dc_resource.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

151) Improper error handling

EUVDB-ID: #VU99072

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49897

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the dcn32_add_phantom_pipes() function in drivers/gpu/drm/amd/display/dc/resource/dcn32/dcn32_resource.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

152) Input validation error

EUVDB-ID: #VU99225

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49899

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the CalculateVMGroupAndRequestTimes() function in drivers/gpu/drm/amd/display/dc/dml2/dml21/src/dml2_core/dml2_core_shared.c, within the get_bytes_per_element() function in drivers/gpu/drm/amd/display/dc/dml/dml1_display_rq_dlg_calc.c, within the calculate_ttu_cursor() function in drivers/gpu/drm/amd/display/dc/dml/dcn20/display_rq_dlg_calc_20.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

153) NULL pointer dereference

EUVDB-ID: #VU98960

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49901

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the msm_gpu_init() function in drivers/gpu/drm/msm/msm_gpu.c, within the adreno_gpu_init() function in drivers/gpu/drm/msm/adreno/adreno_gpu.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

154) NULL pointer dereference

EUVDB-ID: #VU98940

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49906

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn20_program_pipe() function in drivers/gpu/drm/amd/display/dc/hwss/dcn20/dcn20_hwseq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

155) NULL pointer dereference

EUVDB-ID: #VU98939

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49908

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the amdgpu_dm_update_cursor() function in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

156) NULL pointer dereference

EUVDB-ID: #VU98938

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49909

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn32_set_output_transfer_func() function in drivers/gpu/drm/amd/display/dc/hwss/dcn32/dcn32_hwseq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

157) NULL pointer dereference

EUVDB-ID: #VU98936

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49911

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn20_set_output_transfer_func() function in drivers/gpu/drm/amd/display/dc/hwss/dcn20/dcn20_hwseq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

158) NULL pointer dereference

EUVDB-ID: #VU98935

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49912

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the planes_changed_for_existing_stream() function in drivers/gpu/drm/amd/display/dc/core/dc_resource.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

159) NULL pointer dereference

EUVDB-ID: #VU98934

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49913

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the commit_planes_for_stream() function in drivers/gpu/drm/amd/display/dc/core/dc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

160) NULL pointer dereference

EUVDB-ID: #VU98933

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49914

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn20_program_pipe() function in drivers/gpu/drm/amd/display/dc/hwss/dcn20/dcn20_hwseq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

161) NULL pointer dereference

EUVDB-ID: #VU98930

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49917

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn30_init_hw() function in drivers/gpu/drm/amd/display/dc/hwss/dcn30/dcn30_hwseq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

162) NULL pointer dereference

EUVDB-ID: #VU98929

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49918

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn32_acquire_idle_pipe_for_head_pipe_in_layer() function in drivers/gpu/drm/amd/display/dc/resource/dcn32/dcn32_resource.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

163) NULL pointer dereference

EUVDB-ID: #VU98928

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49919

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn201_acquire_free_pipe_for_layer() function in drivers/gpu/drm/amd/display/dc/resource/dcn201/dcn201_resource.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

164) NULL pointer dereference

EUVDB-ID: #VU98927

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49920

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn32_is_center_timing() function in drivers/gpu/drm/amd/display/dc/resource/dcn32/dcn32_resource_helpers.c, within the dcn32_enable_phantom_plane() function in drivers/gpu/drm/amd/display/dc/resource/dcn32/dcn32_resource.c, within the bw_calcs_data_update_from_pplib() function in drivers/gpu/drm/amd/display/dc/resource/dce112/dce112_resource.c, within the reset_dio_stream_encoder() function in drivers/gpu/drm/amd/display/dc/link/hwss/link_hwss_dio.c, within the dp_set_test_pattern() function in drivers/gpu/drm/amd/display/dc/link/accessories/link_dp_cts.c, within the dcn20_post_unlock_program_front_end() and dcn20_wait_for_blank_complete() functions in drivers/gpu/drm/amd/display/dc/hwss/dcn20/dcn20_hwseq.c, within the hwss_build_fast_sequence() function in drivers/gpu/drm/amd/display/dc/core/dc_hw_sequencer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

165) NULL pointer dereference

EUVDB-ID: #VU98924

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49922

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the create_validate_stream_for_sink(), amdgpu_dm_commit_streams() and amdgpu_dm_atomic_commit_tail() functions in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

166) NULL pointer dereference

EUVDB-ID: #VU98950

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49923

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the dcn21_fast_validate_bw() function in drivers/gpu/drm/amd/display/dc/resource/dcn21/dcn21_resource.c, within the dcn20_fast_validate_bw() function in drivers/gpu/drm/amd/display/dc/resource/dcn20/dcn20_resource.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

167) NULL pointer dereference

EUVDB-ID: #VU98957

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49929

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the iwl_mvm_tx_mpdu() and iwl_mvm_tx_skb_sta() functions in drivers/net/wireless/intel/iwlwifi/mvm/tx.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

168) Out-of-bounds read

EUVDB-ID: #VU98908

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49930

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the drivers/net/wireless/ath/ath11k/dp_rx.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

169) Out-of-bounds read

EUVDB-ID: #VU98906

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49933

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the ioc_forgive_debts() function in block/blk-iocost.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

170) Use-after-free

EUVDB-ID: #VU98873

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49936

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the xenvif_new_hash() and xenvif_flush_hash() functions in drivers/net/xen-netback/hash.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

171) Improper locking

EUVDB-ID: #VU99019

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49939

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the rtw89_ops_add_interface() function in drivers/net/wireless/realtek/rtw89/mac80211.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

172) Improper locking

EUVDB-ID: #VU99018

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49946

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ppp_channel_bridge_input() function in drivers/net/ppp/ppp_generic.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

173) NULL pointer dereference

EUVDB-ID: #VU98952

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49949

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the qdisc_pkt_len_init() function in net/core/dev.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

174) Resource management error

EUVDB-ID: #VU99149

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49954

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the static_call_module_notify() function in kernel/static_call_inline.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

175) Resource management error

EUVDB-ID: #VU99172

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49955

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the battery_hook_unregister_unlocked() and battery_hook_register() functions in drivers/acpi/battery.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

176) Input validation error

EUVDB-ID: #VU99044

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49958

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the ocfs2_reflink_xattr_inline() function in fs/ocfs2/xattr.c, within the __ocfs2_reflink() function in fs/ocfs2/refcounttree.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

177) Improper locking

EUVDB-ID: #VU99017

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49959

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the __releases() function in fs/jbd2/checkpoint.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

178) Use-after-free

EUVDB-ID: #VU98877

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49960

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the flush_work() function in fs/ext4/super.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

179) NULL pointer dereference

EUVDB-ID: #VU98949

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49962

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the acpi_db_convert_to_package() function in drivers/acpi/acpica/dbconvert.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

180) Input validation error

EUVDB-ID: #VU99223

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49967

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the do_split() function in fs/ext4/namei.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

181) Out-of-bounds read

EUVDB-ID: #VU98905

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49969

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the cm3_helper_translate_curve_to_hw_format() function in drivers/gpu/drm/amd/display/dc/dcn30/dcn30_cm_common.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

182) Buffer overflow

EUVDB-ID: #VU99156

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49973

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the drivers/net/ethernet/realtek/r8169_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

183) Input validation error

EUVDB-ID: #VU99220

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49974

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the nfs4_state_create_net() function in fs/nfsd/nfs4state.c, within the nfs4_put_copy() and nfsd4_copy() functions in fs/nfsd/nfs4proc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

184) Memory leak

EUVDB-ID: #VU98854

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49975

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the __create_xol_area() function in kernel/events/uprobes.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

185) Use-after-free

EUVDB-ID: #VU98879

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49982

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ata_rw_frameinit(), aoecmd_ata_rw(), resend(), probe() and aoecmd_ata_id() functions in drivers/block/aoe/aoecmd.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

186) Use-after-free

EUVDB-ID: #VU98882

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49991

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the pqm_clean_queue_resource() function in drivers/gpu/drm/amd/amdkfd/kfd_process_queue_manager.c, within the kfd_process_destroy_pdds() function in drivers/gpu/drm/amd/amdkfd/kfd_process.c, within the kfd_free_mqd_cp() function in drivers/gpu/drm/amd/amdkfd/kfd_mqd_manager.c, within the deallocate_hiq_sdma_mqd() function in drivers/gpu/drm/amd/amdkfd/kfd_device_queue_manager.c, within the kfd_gtt_sa_fini() and kgd2kfd_device_exit() functions in drivers/gpu/drm/amd/amdkfd/kfd_device.c, within the kfd_ioctl_create_queue() function in drivers/gpu/drm/amd/amdkfd/kfd_chardev.c, within the amdgpu_amdkfd_free_gtt_mem() function in drivers/gpu/drm/amd/amdgpu/amdgpu_amdkfd.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

187) Improper locking

EUVDB-ID: #VU99012

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49993

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the free_iommu() and raw_spin_lock() functions in drivers/iommu/intel/dmar.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

188) Buffer overflow

EUVDB-ID: #VU99192

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49995

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the bearer_name_validate() function in net/tipc/bearer.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

189) Buffer overflow

EUVDB-ID: #VU99101

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-49996

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the parse_reparse_posix() and cifs_reparse_point_to_fattr() functions in fs/smb/client/reparse.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

190) NULL pointer dereference

EUVDB-ID: #VU98943

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50000

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mlx5e_tir_builder_alloc() function in drivers/net/ethernet/mellanox/mlx5/core/en/tir.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

191) Buffer overflow

EUVDB-ID: #VU99157

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50001

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the mlx5e_sq_xmit_mpwqe() function in drivers/net/ethernet/mellanox/mlx5/core/en_tx.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

192) NULL pointer dereference

EUVDB-ID: #VU98942

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50002

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the static_call_del_module() function in kernel/static_call_inline.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

193) Improper locking

EUVDB-ID: #VU99011

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50006

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the ext4_ind_migrate() function in fs/ext4/migrate.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

194) Improper locking

EUVDB-ID: #VU99010

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50014

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the __ext4_fill_super() function in fs/ext4/super.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

195) Resource management error

EUVDB-ID: #VU99160

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50019

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the kthread_unpark() function in kernel/kthread.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

196) Infinite loop

EUVDB-ID: #VU99121

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50024

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the __netlink_clear_multicast_users() function in net/netlink/af_netlink.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

197) Incorrect calculation

EUVDB-ID: #VU99184

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50028

CWE-ID: CWE-682 - Incorrect Calculation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect calculation within the thermal_genl_cmd_tz_get_trip(), thermal_genl_cmd_tz_get_temp() and thermal_genl_cmd_tz_get_gov() functions in drivers/thermal/thermal_netlink.c, within the thermal_zone_get_by_id() function in drivers/thermal/thermal_core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

198) Use of uninitialized resource

EUVDB-ID: #VU99082

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50033

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the slhc_remember() function in drivers/net/slip/slhc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

199) Use of uninitialized resource

EUVDB-ID: #VU99083

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50035

CWE-ID: CWE-908 - Use of Uninitialized Resource

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the ppp_async_encode() function in drivers/net/ppp/ppp_async.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

200) Improper locking

EUVDB-ID: #VU98999

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50041

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the i40e_vc_get_vf_resources_msg() function in drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c, within the i40e_add_mac_filter() function in drivers/net/ethernet/intel/i40e/i40e_main.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

201) Input validation error

EUVDB-ID: #VU99038

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50045

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the br_nf_dev_queue_xmit() function in net/bridge/br_netfilter_hooks.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

202) Improper locking

EUVDB-ID: #VU98996

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50046

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the nfs42_complete_copies() function in fs/nfs/nfs4state.c, within the handle_async_copy() function in fs/nfs/nfs42proc.c, within the nfs_alloc_server() function in fs/nfs/client.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

203) Improper locking

EUVDB-ID: #VU98995

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50047

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the SMB2_negotiate() function in fs/smb/client/smb2pdu.c, within the smb2_get_enc_key(), crypt_message(), smb3_init_transform_rq() and decrypt_raw_data() functions in fs/smb/client/smb2ops.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

204) Improper error handling

EUVDB-ID: #VU99061

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50048

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the set_con2fb_map() function in drivers/video/fbdev/core/fbcon.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

205) Input validation error

EUVDB-ID: #VU99203

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50049

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the dc_validate_seamless_boot_timing() function in drivers/gpu/drm/amd/display/dc/core/dc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

206) Double free

EUVDB-ID: #VU99057

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50055

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the bus_remove_file() function in drivers/base/bus.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

207) Input validation error

EUVDB-ID: #VU99205

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50058

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the uart_shutdown() function in drivers/tty/serial/serial_core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

208) Race condition

EUVDB-ID: #VU99125

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50059

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the switchtec_ntb_remove() function in drivers/ntb/hw/mscc/ntb_hw_switchtec.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

209) Race condition

EUVDB-ID: #VU99126

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50061

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the cdns_i3c_master_remove() function in drivers/i3c/master/i3c-master-cdns.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

210) Buffer overflow

EUVDB-ID: #VU99190

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50063

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the bpf_prog_map_compatible() function in kernel/bpf/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

211) Improper Initialization

EUVDB-ID: #VU99456

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-50081

CWE-ID: CWE-665 - Improper Initialization

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper initialization within the blk_mq_init_allocated_queue() function in block/blk-mq.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

openSUSE Leap Micro: 5.5

SUSE Linux Enterprise Micro: 5.5

SUSE Real Time Module: 15-SP5

SUSE Linux Enterprise Live Patching: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise Real Time 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-rt-livepatch: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt-debuginfo: before 1-150500.11.3.1

reiserfs-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kselftests-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-optional-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-extra: before 5.14.21-150500.13.76.1

kernel-livepatch-5_14_21-150500_13_76-rt: before 1-150500.11.3.1

kernel-rt-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-rt-optional: before 5.14.21-150500.13.76.1

kernel-rt_debug-livepatch-devel: before 5.14.21-150500.13.76.1

kernel-livepatch-SLE15-SP5-RT_Update_22-debugsource: before 1-150500.11.3.1

kselftests-kmp-rt: before 5.14.21-150500.13.76.1

reiserfs-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug: before 5.14.21-150500.13.76.1

kernel-devel-rt: before 5.14.21-150500.13.76.1

kernel-source-rt: before 5.14.21-150500.13.76.1

gfs2-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt-devel-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-devel: before 5.14.21-150500.13.76.1

kernel-rt-debugsource: before 5.14.21-150500.13.76.1

kernel-rt-vdso-debuginfo: before 5.14.21-150500.13.76.1

kernel-syms-rt: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-debuginfo: before 5.14.21-150500.13.76.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150500.13.76.1

ocfs2-kmp-rt: before 5.14.21-150500.13.76.1

dlm-kmp-rt: before 5.14.21-150500.13.76.1

kernel-rt_debug-vdso: before 5.14.21-150500.13.76.1

kernel-rt_debug-devel: before 5.14.21-150500.13.76.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

dlm-kmp-rt-debuginfo: before 5.14.21-150500.13.76.1

kernel-rt_debug-debugsource: before 5.14.21-150500.13.76.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###