Alerts This Week
Warning Icon 1 1,394
Alerts This Week
Warning Icon 1 1,394

SUSE Linux 15 SP3: 2025:0771-1 important: Kernel Security Update

suse
Calendar Grey March 3, 2025
Dist Suse Esm H88
An important safety enhancement for the Linux Kernel: SUSE-SU-2023:1234-5 resolves multiple vulnerabilities. Crucial for all users.
* bsc#1215420 * bsc#1224763 * bsc#1231847 * bsc#1233112 * bsc#1234025

Summary

## The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-35863: Fixed potential UAF in is_valid_oplock_break() (bsc#1224763). * CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112). * CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1234025). * CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217). * CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230). * CVE-2024-56623: scsi: qla2xxx: Fix use after free on unload (bsc#1235466). * CVE-2024-56650: netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235430).

References

* bsc#1215420

* bsc#1224763

* bsc#1231847

* bsc#1233112

* bsc#1234025

* bsc#1235217

* bsc#1235230

* bsc#1235249

* bsc#1235430

* bsc#1235441

* bsc#1235466

* bsc#1235645

* bsc#1235759

* bsc#1235814

* bsc#1235818

* bsc#1235920

* bsc#1236104

* bsc#1237389

Cross-

* CVE-2023-4244

* CVE-2023-52923

* CVE-2024-35863

* CVE-2024-50199

* CVE-2024-53104

* CVE-2024-56600

* CVE-2024-56601

* CVE-2024-56623

* CVE-2024-56650

* CVE-2024-56658

* CVE-2024-56664

* CVE-2024-56759

* CVE-2024-57791

* CVE-2024-57798

* CVE-2024-57849

* CVE-2024-57893

CVSS scores:

* CVE-2023-4244 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2023-4244 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2023-4244 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2023-52923 ( SUSE ): 5.7

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:0771-1
Release Date: 2025-03-03T13:42:47Z
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here