Alerts This Week
Warning Icon 1 540
Alerts This Week
Warning Icon 1 540

openSUSE: 2025:01707-1 important: kernel security fix overview

opensuse
Calendar Grey May 26, 2025
Dist Opensuse Esm H88
This upgrade improves Windows OS security by addressing a range of threats. Timely application is recommended.
An update that solves 170 vulnerabilities, contains one feature and has 67 security fixes can now be installed.

Description

The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various

security bugfixes.

The following security bugs were fixed:

* CVE-2024-27415: netfilter: bridge: confirm multicast packets before passing

them up the stack (bsc#1224757).

* CVE-2024-28956: Intel CPU: Indirect Target Selection (ITS) (bsc#1242006).

* CVE-2024-35840: mptcp: use OPTION_MPTCP_MPJ_SYNACK in

subflow_finish_connect() (bsc#1224597).

* CVE-2024-46763: fou: Fix null-ptr-deref in GRO (bsc#1230764).

* CVE-2024-50038: netfilter: xtables: avoid NFPROTO_UNSPEC where needed

(bsc#1231910).

* CVE-2024-50162: bpf: devmap: provide rxq after redirect (bsc#1233075).

* CVE-2024-50163: bpf: Make sure internal and UAPI bpf_redirect flags do not

overlap (bsc#1233098).

* CVE-2024-53124: net: fix data-races around sk->sk_forward_alloc

(bsc#1234074).

* CVE-2024-53139: sctp: fix possible UAF in sctp_v6_available() (bsc#1234157).

* CVE-2024-57924: fs: relax assertions on failure to...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory kernel update critical security fix CVE reference openSUSE

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap 15.6

zypper in -t patch SUSE-2025-1707=1 openSUSE-SLE-15.6-2025-1707=1

* Public Cloud Module 15-SP6

zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP6-2025-1707=1

Package List

* openSUSE Leap 15.6 (aarch64 x86_64)

* cluster-md-kmp-azure-6.4.0-150600.8.37.1

* ocfs2-kmp-azure-6.4.0-150600.8.37.1

* kernel-azure-optional-debuginfo-6.4.0-150600.8.37.1

* cluster-md-kmp-azure-debuginfo-6.4.0-150600.8.37.1

* kernel-azure-devel-6.4.0-150600.8.37.1

* kernel-azure-debugsource-6.4.0-150600.8.37.1

* kernel-azure-optional-6.4.0-150600.8.37.1

* reiserfs-kmp-azure-debuginfo-6.4.0-150600.8.37.1

* kernel-azure-extra-6.4.0-150600.8.37.1

* dlm-kmp-azure-6.4.0-150600.8.37.1

* kernel-azure-extra-debuginfo-6.4.0-150600.8.37.1

* gfs2-kmp-azure-debuginfo-6.4.0-150600.8.37.1

* kselftests-kmp-azure-debuginfo-6.4.0-150600.8.37.1

* kernel-azure-devel-debuginfo-6.4.0-150600.8.37.1

* kselftests-kmp-azure-6.4.0-150600.8.37.1

* reiserfs-kmp-azure-6.4.0-150600.8.37.1

* kernel-syms-azure-6.4.0-150600.8.37.1

* gfs2-kmp-azure-6.4.0-150600.8.37.1

* ocfs2-kmp-azure-debuginfo-6.4.0-150600.8.37.1

* kernel-azure-debuginfo-6.4.0-150600.8.37.1

* dlm-kmp-azure-debuginfo-6.4.0-150600.8.37.1

* openSUSE Leap 15.6 (aarch64...

Read the Full Advisory

References

* bsc#1215199

* bsc#1223809

* bsc#1224013

* bsc#1224597

* bsc#1224757

* bsc#1228659

* bsc#1230764

* bsc#1231103

* bsc#1231910

* bsc#1232493

* bsc#1233075

* bsc#1233098

* bsc#1234074

* bsc#1234157

* bsc#1234698

* bsc#1235501

* bsc#1235526

* bsc#1235550

* bsc#1235870

* bsc#1236086

* bsc#1236704

* bsc#1237111

* bsc#1237874

* bsc#1237882

* bsc#1238052

* bsc#1238212

* bsc#1238471

* bsc#1238527

* bsc#1238565

* bsc#1238714

* bsc#1238737

* bsc#1238742

* bsc#1238745

* bsc#1238746

* bsc#1238862

* bsc#1238961

* bsc#1238970

* bsc#1238983

* bsc#1238990

* bsc#1239066

* bsc#1239079

* bsc#1239108

* bsc#1239470

* bsc#1239475

* bsc#1239476

* bsc#1239487

* bsc#1239510

* bsc#1239684

* bsc#1239906

* bsc#1239925

* bsc#1239997

* bsc#1240167

* bsc#1240168

* bsc#1240171

* bsc#1240176

* bsc#1240181

* bsc#1240184

* bsc#1240185

* bsc#1240375

* bsc#1240557

* bsc#1240575

* bsc#1240576

* bsc#1240581

* bsc#1240582

* bsc#1240583

* bsc#1240584

* bsc#1240585

* bsc#1240587

* bsc#1240590

* bsc#1240591

* bsc#1240592

* bsc#1240594

* bsc#1240595

* bsc#1240596

* bsc#1240600

* bsc#1240612

*...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:01707-1
Release Date: 2025-05-26T11:35:19Z
Affected Products: * openSUSE Leap 15.6 * Public Cloud Module 15-SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6

Topics%20covered

Topics Covered

security advisory kernel update critical security fix CVE reference openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here