Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

openSUSE: 2025:0847-1 important: the Linux Kernel Advisory Security Update

opensuse
Calendar Grey March 12, 2025
Dist Opensuse Esm H88
An important security patch for the openSUSE kernel tackles 83 vulnerabilities with quick installation guides.
An update that solves 83 vulnerabilities, contains four features and has 52 security fixes can now be installed.

Description

The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various

security bugfixes.

The following security bugs were fixed:

* CVE-2024-26708: mptcp: fix inconsistent state on fastopen race

(bsc#1222672).

* CVE-2024-40980: drop_monitor: replace spin_lock by raw_spin_lock

(bsc#1227937).

* CVE-2024-44974: mptcp: pm: avoid possible UaF when selecting endp

(bsc#1230235).

* CVE-2024-45009: mptcp: pm: only decrement add_addr_accepted for MPJ req

(bsc#1230438).

* CVE-2024-45010: mptcp: pm: only mark 'subflow' endp as available

(bsc#1230439).

* CVE-2024-46858: mptcp: pm: Fix uaf in __timer_delete_sync (bsc#1231088).

* CVE-2024-50029: Bluetooth: hci_conn: Fix UAF in hci_enhanced_setup_sync

(bsc#1231949).

* CVE-2024-50036: net: do not delay dst_entries_add() in dst_release()

(bsc#1231912).

* CVE-2024-50085: mptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow

(bsc#1232508).

* CVE-2024-50142: xfrm: validate new SA's prefixlen...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory update software patch important system reboot openSUSE Linux Kernel

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* Public Cloud Module 15-SP6

zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP6-2025-847=1

* openSUSE Leap 15.6

zypper in -t patch SUSE-2025-847=1 openSUSE-SLE-15.6-2025-847=1

Package List

* Public Cloud Module 15-SP6 (aarch64 nosrc x86_64)

* kernel-azure-6.4.0-150600.8.31.1

* Public Cloud Module 15-SP6 (aarch64 x86_64)

* kernel-azure-debugsource-6.4.0-150600.8.31.1

* kernel-azure-devel-debuginfo-6.4.0-150600.8.31.1

* kernel-azure-debuginfo-6.4.0-150600.8.31.1

* kernel-syms-azure-6.4.0-150600.8.31.1

* kernel-azure-devel-6.4.0-150600.8.31.1

* Public Cloud Module 15-SP6 (noarch)

* kernel-source-azure-6.4.0-150600.8.31.1

* kernel-devel-azure-6.4.0-150600.8.31.1

* openSUSE Leap 15.6 (aarch64 x86_64)

* reiserfs-kmp-azure-debuginfo-6.4.0-150600.8.31.1

* gfs2-kmp-azure-6.4.0-150600.8.31.1

* kernel-azure-optional-6.4.0-150600.8.31.1

* kernel-azure-devel-debuginfo-6.4.0-150600.8.31.1

* kernel-azure-debuginfo-6.4.0-150600.8.31.1

* cluster-md-kmp-azure-6.4.0-150600.8.31.1

* kselftests-kmp-azure-debuginfo-6.4.0-150600.8.31.1

* gfs2-kmp-azure-debuginfo-6.4.0-150600.8.31.1

* kernel-azure-extra-6.4.0-150600.8.31.1

* ocfs2-kmp-azure-debuginfo-6.4.0-150600.8.31.1

* kselftests-kmp-azure-6.4.0-150600.8.31.1

*...

Read the Full Advisory

References

* bsc#1012628

* bsc#1215199

* bsc#1219367

* bsc#1222672

* bsc#1222803

* bsc#1225606

* bsc#1225742

* bsc#1225981

* bsc#1227937

* bsc#1228521

* bsc#1230235

* bsc#1230438

* bsc#1230439

* bsc#1230497

* bsc#1231088

* bsc#1231432

* bsc#1231912

* bsc#1231920

* bsc#1231949

* bsc#1232159

* bsc#1232198

* bsc#1232201

* bsc#1232299

* bsc#1232508

* bsc#1232520

* bsc#1232919

* bsc#1233028

* bsc#1233109

* bsc#1233483

* bsc#1233749

* bsc#1234070

* bsc#1234853

* bsc#1234857

* bsc#1234891

* bsc#1234894

* bsc#1234895

* bsc#1234896

* bsc#1234963

* bsc#1235032

* bsc#1235054

* bsc#1235061

* bsc#1235073

* bsc#1235244

* bsc#1235435

* bsc#1235441

* bsc#1235485

* bsc#1235592

* bsc#1235599

* bsc#1235609

* bsc#1235914

* bsc#1235932

* bsc#1235933

* bsc#1236113

* bsc#1236114

* bsc#1236115

* bsc#1236122

* bsc#1236123

* bsc#1236133

* bsc#1236138

* bsc#1236199

* bsc#1236200

* bsc#1236203

* bsc#1236205

* bsc#1236573

* bsc#1236575

* bsc#1236576

* bsc#1236591

* bsc#1236661

* bsc#1236677

* bsc#1236680

* bsc#1236681

* bsc#1236682

* bsc#1236683

* bsc#1236684

* bsc#1236685

* bsc#1236689

*...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:0847-1
Release Date:
Affected Products: * openSUSE Leap 15.6 * Public Cloud Module 15-SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6

Topics%20covered

Topics Covered

security advisory update software patch important system reboot openSUSE Linux Kernel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here