Alerts This Week
Warning Icon 1 1,394
Alerts This Week
Warning Icon 1 1,394

SUSE Linux 11 SP4: 2025:0603-1 important: kernel security fixes

suse
Calendar Grey February 21, 2025
Dist Suse Esm H88
An essential security patch for SUSE Linux Kernel tackles 13 major vulnerabilities to boost system safety.
* bsc#1224763 * bsc#1234025 * bsc#1234853 * bsc#1234891 * bsc#1234963

Summary

## The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-35863: smb: client: fix potential UAF in is_valid_oplock_break() (bsc#1224763). * CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1234025). * CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217). * CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230). * CVE-2024-56650: netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235430). * CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645). * CVE-2024-57850: jffs2: Prevent rtime decompress memory corruption

References

* bsc#1224763

* bsc#1234025

* bsc#1234853

* bsc#1234891

* bsc#1234963

* bsc#1235054

* bsc#1235061

* bsc#1235073

* bsc#1235217

* bsc#1235230

* bsc#1235430

* bsc#1235645

* bsc#1235812

* bsc#1235920

Cross-

* CVE-2024-35863

* CVE-2024-53104

* CVE-2024-53173

* CVE-2024-53239

* CVE-2024-56539

* CVE-2024-56548

* CVE-2024-56600

* CVE-2024-56601

* CVE-2024-56605

* CVE-2024-56650

* CVE-2024-56759

* CVE-2024-57850

* CVE-2024-57893

CVSS scores:

* CVE-2024-35863 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2024-35863 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2024-53104 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:0603-1
Release Date: 2025-02-20T10:34:39Z
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here