Alerts This Week
Warning Icon 1 1,394
Alerts This Week
Warning Icon 1 1,394

SUSE 15 SP3: 2025:0517-2 important: kernel bug fixes and updates

suse
Calendar Grey February 21, 2025
Dist Suse Esm H88
SUSE releases an urgent security bulletin regarding the kernel to address severe vulnerabilities affecting various offerings.
* bsc#1215420 * bsc#1224763 * bsc#1231847 * bsc#1233112 * bsc#1234025

Summary

## The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. NOTE: This update was retracted due to a regression in NFS. The following security bugs were fixed: * CVE-2024-35863: Fixed potential UAF in is_valid_oplock_break() (bsc#1224763). * CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112). * CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1234025). * CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217). * CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230). * CVE-2024-56623: scsi: qla2xxx: Fix use after free on unload (bsc#1235466).

References

* bsc#1215420

* bsc#1224763

* bsc#1231847

* bsc#1233112

* bsc#1234025

* bsc#1235217

* bsc#1235230

* bsc#1235249

* bsc#1235430

* bsc#1235441

* bsc#1235466

* bsc#1235645

* bsc#1235759

* bsc#1235814

* bsc#1235818

* bsc#1235920

* bsc#1236104

Cross-

* CVE-2023-4244

* CVE-2023-52923

* CVE-2024-35863

* CVE-2024-50199

* CVE-2024-53104

* CVE-2024-56600

* CVE-2024-56601

* CVE-2024-56623

* CVE-2024-56650

* CVE-2024-56658

* CVE-2024-56664

* CVE-2024-56759

* CVE-2024-57791

* CVE-2024-57798

* CVE-2024-57849

* CVE-2024-57893

CVSS scores:

* CVE-2023-4244 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2023-4244 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2023-4244 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2023-52923 ( SUSE ): 5.7

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:0517-2
Release Date: 2025-02-20T12:33:01Z
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here