Alerts This Week
Warning Icon 1 566
Alerts This Week
Warning Icon 1 566

openSUSE 15.5: 2025:01640-1 critical: Linux Kernel Security Update

opensuse
Calendar Grey May 21, 2025
Dist Opensuse Esm H88
A critical patch has been released to tackle various vulnerabilities within the Linux Kernel affecting both openSUSE and SUSE Enterprise systems.
An update that solves 40 vulnerabilities and has seven security fixes can now be installed.

Description

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various

security bugfixes.

The following security bugs were fixed:

* CVE-2022-48933: netfilter: nf_tables: fix memory leak during stateful obj

update (bsc#1229621).

* CVE-2022-49110: netfilter: conntrack: revisit gc autotuning (bsc#1237981).

* CVE-2022-49139: Bluetooth: fix null ptr deref on hci_sync_conn_complete_evt

(bsc#1238032).

* CVE-2022-49767: 9p/trans_fd: always use O_NONBLOCK read/write (bsc#1242493).

* CVE-2024-46763: fou: Fix null-ptr-deref in GRO (bsc#1230764).

* CVE-2024-50038: netfilter: xtables: avoid NFPROTO_UNSPEC where needed

(bsc#1231910).

* CVE-2025-21726: padata: avoid UAF for reorder_work (bsc#1238865).

* CVE-2025-21785: arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo

array (bsc#1238747).

* CVE-2025-21791: vrf: use RCU protection in l3mdev_l3_out() (bsc#1238512).

* CVE-2025-21812: ax25: rcu protect dev->ax25_ptr (bsc#1238471).

* CVE-2025-21839: KVM:...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory security issue critical patch openSUSE Linux Kernel

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5

zypper in -t patch SUSE-2025-1640=1

* SUSE Linux Enterprise Micro 5.5

zypper in -t patch SUSE-SLE-Micro-5.5-2025-1640=1

Package List

* openSUSE Leap 15.5 (noarch)

* kernel-source-rt-5.14.21-150500.13.94.1

* kernel-devel-rt-5.14.21-150500.13.94.1

* openSUSE Leap 15.5 (x86_64)

* kernel-rt_debug-debugsource-5.14.21-150500.13.94.1

* kernel-rt_debug-devel-5.14.21-150500.13.94.1

* kernel-rt-extra-debuginfo-5.14.21-150500.13.94.1

* kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.94.1

* kernel-rt-optional-debuginfo-5.14.21-150500.13.94.1

* kselftests-kmp-rt-debuginfo-5.14.21-150500.13.94.1

* kernel-rt-extra-5.14.21-150500.13.94.1

* ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.94.1

* kernel-rt-livepatch-devel-5.14.21-150500.13.94.1

* dlm-kmp-rt-5.14.21-150500.13.94.1

* kernel-rt-debugsource-5.14.21-150500.13.94.1

* kernel-rt-vdso-5.14.21-150500.13.94.1

* reiserfs-kmp-rt-debuginfo-5.14.21-150500.13.94.1

* reiserfs-kmp-rt-5.14.21-150500.13.94.1

* kselftests-kmp-rt-5.14.21-150500.13.94.1

* cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.94.1

* kernel-rt-optional-5.14.21-150500.13.94.1

* kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.94.1

*...

Read the Full Advisory

References

* bsc#1054914

* bsc#1206843

* bsc#1210409

* bsc#1225903

* bsc#1229361

* bsc#1229621

* bsc#1230764

* bsc#1231103

* bsc#1231910

* bsc#1236777

* bsc#1237981

* bsc#1238032

* bsc#1238471

* bsc#1238512

* bsc#1238747

* bsc#1238865

* bsc#1239061

* bsc#1239684

* bsc#1239968

* bsc#1240209

* bsc#1240211

* bsc#1240214

* bsc#1240228

* bsc#1240230

* bsc#1240246

* bsc#1240248

* bsc#1240269

* bsc#1240271

* bsc#1240274

* bsc#1240285

* bsc#1240295

* bsc#1240306

* bsc#1240314

* bsc#1240315

* bsc#1240321

* bsc#1240747

* bsc#1240835

* bsc#1241280

* bsc#1241371

* bsc#1241421

* bsc#1241433

* bsc#1241541

* bsc#1241625

* bsc#1241648

* bsc#1242284

* bsc#1242493

* bsc#1242778

## References:

* https://www.suse.com/security/cve/CVE-2021-47671.html

* https://www.suse.com/security/cve/CVE-2022-48933.html

* https://www.suse.com/security/cve/CVE-2022-49110.html

* https://www.suse.com/security/cve/CVE-2022-49139.html

* https://www.suse.com/security/cve/CVE-2022-49741.html

* https://www.suse.com/security/cve/CVE-2022-49745.html

*...

Read the Full Advisory

Severity
critical
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:01640-1
Release Date: 2025-05-21T11:52:09Z
Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise Micro 5.5

Topics%20covered

Topics Covered

security advisory security issue critical patch openSUSE Linux Kernel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here