Alerts This Week
Warning Icon 1 566
Alerts This Week
Warning Icon 1 566

openSUSE: 2025:0855-1 important: the Linux Kernel Advisory Security Update

opensuse
Calendar Grey March 13, 2025
Dist Opensuse Esm H88
SUSE's important kernel update addresses 14 issues and recommends immediate installation for security.
An update that solves 14 vulnerabilities and has four security fixes can now be installed.

Description

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security

bugfixes.

The following security bugs were fixed:

* CVE-2021-47633: ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111

(bsc#1237768).

* CVE-2022-49080: mm/mempolicy: fix mpol_new leak in shared_policy_replace

(bsc#1238033).

* CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks

(bsc#1224700).

* CVE-2025-21690: scsi: storvsc: Ratelimit warning logs to prevent VM denial

of service (bsc#1237025).

* CVE-2025-21692: net: sched: fix ets qdisc OOB Indexing (bsc#1237028).

* CVE-2025-21699: gfs2: Truncate address space when flipping GFS2_DIF_JDATA

flag (bsc#1237139).

The following non-security bugs were fixed:

* net: mana: Add get_link and get_link_ksettings in ethtool (bsc#1236761).

* net: netvsc: Update default VMBus channels (bsc#1236757).

* scsi: storvsc: Handle SRB status value 0x30 (git-fixes).

## Special Instructions and Notes:

* Please...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory security update buffer overflow DoS kernel patch bugfix openSUSE

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap 15.3

zypper in -t patch SUSE-2025-855=1

* SUSE Linux Enterprise Live Patching 15-SP3

zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2025-855=1

* SUSE Linux Enterprise High Availability Extension 15 SP3

zypper in -t patch SUSE-SLE-Product-HA-15-SP3-2025-855=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3

zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-855=1

* SUSE Linux Enterprise Server 15 SP3 LTSS

zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-855=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP3

zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-855=1

* SUSE Enterprise Storage 7.1

zypper in -t patch SUSE-Storage-7.1-2025-855=1

* SUSE Linux Enterprise Micro 5.1

zypper in -t patch SUSE-SUSE-MicroOS-5.1-2025-855=1

* SUSE Linux...

Read the Full Advisory

Package List

* openSUSE Leap 15.3 (noarch nosrc)

* kernel-docs-5.3.18-150300.59.198.1

* openSUSE Leap 15.3 (noarch)

* kernel-source-5.3.18-150300.59.198.1

* kernel-macros-5.3.18-150300.59.198.1

* kernel-devel-5.3.18-150300.59.198.1

* kernel-source-vanilla-5.3.18-150300.59.198.1

* kernel-docs-html-5.3.18-150300.59.198.1

* openSUSE Leap 15.3 (nosrc ppc64le x86_64)

* kernel-kvmsmall-5.3.18-150300.59.198.1

* kernel-debug-5.3.18-150300.59.198.1

* openSUSE Leap 15.3 (ppc64le x86_64)

* kernel-kvmsmall-debugsource-5.3.18-150300.59.198.1

* kernel-debug-debugsource-5.3.18-150300.59.198.1

* kernel-kvmsmall-devel-5.3.18-150300.59.198.1

* kernel-debug-debuginfo-5.3.18-150300.59.198.1

* kernel-debug-devel-5.3.18-150300.59.198.1

* kernel-kvmsmall-devel-debuginfo-5.3.18-150300.59.198.1

* kernel-debug-devel-debuginfo-5.3.18-150300.59.198.1

* kernel-kvmsmall-debuginfo-5.3.18-150300.59.198.1

* openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64)

* cluster-md-kmp-default-debuginfo-5.3.18-150300.59.198.1

*...

Read the Full Advisory

References

* bsc#1215420

* bsc#1224700

* bsc#1225742

* bsc#1232919

* bsc#1234853

* bsc#1234891

* bsc#1234963

* bsc#1235054

* bsc#1235061

* bsc#1235073

* bsc#1236757

* bsc#1236761

* bsc#1236821

* bsc#1237025

* bsc#1237028

* bsc#1237139

* bsc#1237768

* bsc#1238033

## References:

* https://www.suse.com/security/cve/CVE-2021-47633.html

* https://www.suse.com/security/cve/CVE-2022-49080.html

* https://www.suse.com/security/cve/CVE-2023-4244.html

* https://www.suse.com/security/cve/CVE-2023-52924.html

* https://www.suse.com/security/cve/CVE-2024-35949.html

* https://www.suse.com/security/cve/CVE-2024-50115.html

* https://www.suse.com/security/cve/CVE-2024-53173.html

* https://www.suse.com/security/cve/CVE-2024-53239.html

* https://www.suse.com/security/cve/CVE-2024-56539.html

* https://www.suse.com/security/cve/CVE-2024-56548.html

* https://www.suse.com/security/cve/CVE-2024-56605.html

* https://www.suse.com/security/cve/CVE-2025-21690.html

* https://www.suse.com/security/cve/CVE-2025-21692.html

*...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:0855-1
Release Date: 2025-03-13T12:44:07Z
Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Availability Extension 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 Business Critical Linux * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Manager Proxy 4.2 * SUSE Manager Retail Branch Server 4.2 * SUSE Manager Server 4.2

Topics%20covered

Topics Covered

security advisory security update buffer overflow DoS kernel patch bugfix openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here