Alerts This Week
Warning Icon 1 560
Alerts This Week
Warning Icon 1 560

SUSE: 2024:4388-1 important: Linux Kernel Updates Address Security Issues

suse
Calendar Grey December 19, 2024
Dist Suse Esm H88
Latest security patch for SUSE Linux Kernel addresses 18 vulnerabilities, enhancing system protection and operational stability.
* bsc#1218644 * bsc#1220927 * bsc#1232224 * bsc#1232436 * bsc#1232860

Summary

## The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2023-52524: Fixed possible corruption in nfc/llcp (bsc#1220927). * CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core (bsc#1232224) * CVE-2024-50089: unicode: Do not special case ignorable code points (bsc#1232860). * CVE-2024-50115: KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory (bsc#1232919). * CVE-2024-50125: Bluetooth: SCO: Fix UAF on sco_sock_timeout (bsc#1232928). * CVE-2024-50127: net: sched: fix use-after-free in taprio_change() (bsc#1232907). * CVE-2024-50154: tcp/dccp: Do not use timer_pending() in reqsk_queue_unlink() (bsc#1233070). * CVE-2024-50205: ALSA: firewire-lib: Avoid division by zero in

Topics%20covered

Topics Covered

security advisory update critical important SUSE bugfixes Linux Kernel

References

* bsc#1218644

* bsc#1220927

* bsc#1232224

* bsc#1232436

* bsc#1232860

* bsc#1232907

* bsc#1232919

* bsc#1232928

* bsc#1233070

* bsc#1233117

* bsc#1233293

* bsc#1233453

* bsc#1233456

* bsc#1233468

* bsc#1233479

* bsc#1233490

* bsc#1233491

* bsc#1233555

* bsc#1233557

Cross-

* CVE-2023-52524

* CVE-2024-49925

* CVE-2024-50089

* CVE-2024-50115

* CVE-2024-50125

* CVE-2024-50127

* CVE-2024-50154

* CVE-2024-50205

* CVE-2024-50208

* CVE-2024-50264

* CVE-2024-50267

* CVE-2024-50279

* CVE-2024-50290

* CVE-2024-50301

* CVE-2024-50302

* CVE-2024-53061

* CVE-2024-53063

* CVE-2024-53142

CVSS scores:

* CVE-2023-52524 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

* CVE-2024-49925 ( SUSE ): 7.1

CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2024:4388-1
Release Date: 2024-12-19T18:32:09Z
Rating: important

Topics%20covered

Topics Covered

security advisory update critical important SUSE bugfixes Linux Kernel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here