Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

SUSE: 2025:0943-1 important: the Linux Kernel Security Advisory Updates

suse
Calendar Grey March 19, 2025
Dist Suse Esm H88
Critical updates for SUSE's Linux Kernel addressing multiple issues to enhance system security.
* bsc#1227656 * bsc#1227751 * bsc#1228017 * bsc#1229640 * bsc#1231204

Summary

## This update for the Linux Kernel 5.3.18-150300_59_158 fixes several issues. The following security issues were fixed: * CVE-2024-46818: drm/amd/display: Check gpio_id before used as array index (bsc#1231204). * CVE-2021-47261: Fix initializing CQ fragments buffer (bsc#1224954) * CVE-2024-50302: HID: core: zero-initialize the report buffer (bsc#1233679). * CVE-2022-48792: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task (bsc#1228017). * CVE-2022-48911: kabi: add __nf_queue_get_refs() for kabi compliance. (bsc#1229640). * CVE-2021-47496: Fix flipped sign in tls_err_abort() calls (bsc#1225354) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

References

* bsc#1227656

* bsc#1227751

* bsc#1228017

* bsc#1229640

* bsc#1231204

* bsc#1233679

Cross-

* CVE-2021-47261

* CVE-2021-47496

* CVE-2022-48792

* CVE-2022-48911

* CVE-2024-46818

* CVE-2024-50302

CVSS scores:

* CVE-2021-47261 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2021-47496 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2022-48792 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2022-48911 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2022-48911 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

* CVE-2024-46818 ( SUSE ): 7.3

CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:0943-1
Release Date: 2025-03-19T11:34:03Z
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here