Alerts This Week
Warning Icon 1 1,295
Alerts This Week
Warning Icon 1 1,295

SUSE: 2025:0203-1 important: Linux Kernel Security Updates

suse
Calendar Grey January 21, 2025
Dist Suse Esm H88
A recent significant kernel enhancement for SUSE tackles various vulnerabilities and resolves several bugs. Keep your system safe!
* bsc#1170891 * bsc#1173139 * bsc#1185010 * bsc#1190358 * bsc#1190428

Summary

## The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-41087: Fix double free on error (bsc#1228466). * CVE-2024-53095: smb: client: Fix use-after-free of network namespace (bsc#1233642). * CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234853). * CVE-2024-53156: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (bsc#1234846). * CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234891). * CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921). * CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004). * CVE-2024-53239: ALSA: 6fire: Release resources at card release

References

* bsc#1170891

* bsc#1173139

* bsc#1185010

* bsc#1190358

* bsc#1190428

* bsc#1209798

* bsc#1215304

* bsc#1222878

* bsc#1228466

* bsc#1230697

* bsc#1232436

* bsc#1233070

* bsc#1233642

* bsc#1234281

* bsc#1234282

* bsc#1234846

* bsc#1234853

* bsc#1234891

* bsc#1234921

* bsc#1234960

* bsc#1234963

* bsc#1235004

* bsc#1235035

* bsc#1235054

* bsc#1235056

* bsc#1235061

* bsc#1235073

* bsc#1235220

* bsc#1235224

* bsc#1235246

* bsc#1235507

Cross-

* CVE-2021-47202

* CVE-2022-49035

* CVE-2024-41087

* CVE-2024-50154

* CVE-2024-53095

* CVE-2024-53142

* CVE-2024-53146

* CVE-2024-53156

* CVE-2024-53173

* CVE-2024-53179

* CVE-2024-53206

* CVE-2024-53214

* CVE-2024-53239

* CVE-2024-53240

* CVE-2024-53241

* CVE-2024-56539

* CVE-2024-56548

* CVE-2024-56570

* CVE-2024-56598

* CVE-2024-56604

* CVE-2024-56605

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:0203-1
Release Date: 2025-01-21T13:58:43Z
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here