Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 1 articles for you...
219
security advisorysecurity fiximportantRocky Linux 8 RLSA-2025:1266 important: media kernel issue update
Important: kernel security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:1266", "synopsis": "Important: kernel security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for kernel.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (CVE-2024-53104)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2329817", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2329817", "description": ""}], "cves": [{"name": "CVE-2024-53104", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2024-53104", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}], "references": [], "publishedAt": "2025-02-26T19:09:38.038344Z", "rpms": {"Rocky Linux 8": {"nvras": ["bpftool-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "bpftool-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "bpftool-debuginfo-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "bpftool-debuginfo-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-0:4.18.0-553.40.1.el8_10.src.rpm", "kernel-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-abi-stablelists-0:4.18.0-553.40.1.el8_10.noarch.rpm", "kernel-core-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-core-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-cross-headers-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-cross-headers-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-debug-0:4.18.0-553.40.1.el8_10.aarch64.rpm","kernel-debug-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-debug-core-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-debug-core-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-debug-debuginfo-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-debug-debuginfo-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-debug-devel-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-debug-devel-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-debuginfo-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-debuginfo-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-debuginfo-common-aarch64-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-debuginfo-common-x86_64-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-debug-modules-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-debug-modules-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-debug-modules-extra-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-debug-modules-extra-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-devel-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-devel-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-doc-0:4.18.0-553.40.1.el8_10.noarch.rpm", "kernel-headers-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-headers-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-modules-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-modules-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-modules-extra-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-modules-extra-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-tools-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-tools-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-tools-debuginfo-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-tools-debuginfo-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-tools-libs-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-tools-libs-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "kernel-tools-libs-devel-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "kernel-tools-libs-devel-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "perf-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "perf-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "perf-debuginfo-0:4.18.0-553.40.1.el8_10.aarch64.rpm","perf-debuginfo-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "python3-perf-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "python3-perf-0:4.18.0-553.40.1.el8_10.x86_64.rpm", "python3-perf-debuginfo-0:4.18.0-553.40.1.el8_10.aarch64.rpm", "python3-perf-debuginfo-0:4.18.0-553.40.1.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Rocky Linux 8 rolls out a significant kernel patch that tackles a vital security vulnerability. Discover further details regarding this update here.. Kernel Security Update, Rocky Linux Patch, Media Vulnerability Fixes, System Update Best Practices. . Severity: Important. LinuxSecurity.com Team
Feb 26, 2025
•Important
Rocky Linux
202
security advisorykernel patchkernelopenSUSE 15.3: 2025:0707-1 important: Kernel Media Issue
An update that solves one vulnerability can now be installed.. # Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP3) Announcement ID: SUSE-SU-2025:0707-1 Release Date: 2025-02-25T04:03:57Z Rating: important References: * bsc#1236783 Cross-References: * CVE-2024-53104 CVSS scores: * CVE-2024-53104 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_174 fixes one issue. The following security issue was fixed: * CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1236783). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-707=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2025-707=1 ## Package List: * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_174-default-debuginfo-5-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_48-debugsource-5-150300.2.1 * kernel-livepatch-5_3_18-150300_59_174-default-5-150300.2.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_174-preempt-5-150300.2.1 * kernel-livepatch-5_3_18-150300_59_174-preempt-debuginfo-5-150300.2.1 *SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_174-default-5-150300.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-53104.html * https://bugzilla.suse.com/show_bug.cgi?id=1236783 . Critical patch released for Linux Kernel to remedy a multimedia vulnerability. Essential guidelines provided for openSUSE participants.. Live Patch, Security Update, Linux Kernel, openSUSE, Kernel Patch. . Severity: Important. LinuxSecurity.com Team
Feb 25, 2025
•Important
OpenSUSE
100
security advisoryupdatepatchSUSE: 2025:0707-1 important: Kernel media parsing issue
* bsc#1236783 Cross-References: * CVE-2024-53104 . # Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP3) Announcement ID: SUSE-SU-2025:0707-1 Release Date: 2025-02-25T04:03:57Z Rating: important References: * bsc#1236783 Cross-References: * CVE-2024-53104 CVSS scores: * CVE-2024-53104 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_174 fixes one issue. The following security issue was fixed: * CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1236783). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-707=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2025-707=1 ## Package List: * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_174-default-debuginfo-5-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_48-debugsource-5-150300.2.1 * kernel-livepatch-5_3_18-150300_59_174-default-5-150300.2.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_174-preempt-5-150300.2.1 * kernel-livepatch-5_3_18-150300_59_174-preempt-debuginfo-5-150300.2.1 * SUSE LinuxEnterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_174-default-5-150300.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-53104.html * https://bugzilla.suse.com/show_bug.cgi?id=1236783 . Red Hat releases a security bulletin regarding the Linux Kernel, focusing on a critical filesystem vulnerability that requires urgent attention.. Linux Kernel Update, SUSE Security Advisory, Important Security Fix. . Severity: Important. LinuxSecurity.com Team
Feb 25, 2025
•Important
SuSE
100
security advisorycritical issuesecurity fixSUSE 2025:0662-1 important: kernel patch addressing critical issue
* bsc#1236783 Cross-References: * CVE-2024-53104 . # Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP6) Announcement ID: SUSE-SU-2025:0662-1 Release Date: 2025-02-24T11:33:43Z Rating: important References: * bsc#1236783 Cross-References: * CVE-2024-53104 CVSS scores: * CVE-2024-53104 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 6.4.0-150600_23_22 fixes one issue. The following security issue was fixed: * CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1236783). ## Patch Instructions: To install this SUSE update use the SUSE recommendedinstallation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2025-684=1 SUSE-SLE- Module-Live-Patching-15-SP6-2025-666=1 SUSE-SLE-Module-Live- Patching-15-SP6-2025-673=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-666=1 SUSE-2025-673=1 * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2025-662=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-686=1 SUSE-2025-671=1 SUSE-2025-685=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2025-686=1 SUSE-SLE- Module-Live-Patching-15-SP4-2025-671=1 SUSE-SLE-Module-Live- Patching-15-SP4-2025-685=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-664=1 SUSE-2025-672=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2025-664=1 SUSE-SLE- Module-Live-Patching-15-SP5-2025-672=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP6 (x86_64) * kernel-livepatch-6_4_0-150600_10_11-rt-debuginfo-5-150600.2.1 * kernel-livepatch-6_4_0-150600_10_11-rt-5-150600.2.1 * kernel-livepatch-SLE15-SP6-RT_Update_3-debugsource-5-150600.2.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_4-debugsource-5-150600.2.1 * kernel-livepatch-6_4_0-150600_23_17-default-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_17-default-debuginfo-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_22-default-5-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_3-debugsource-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_22-default-debuginfo-5-150600.2.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_4-debugsource-5-150600.2.1 * kernel-livepatch-6_4_0-150600_23_17-default-9-150600.2.1 *kernel-livepatch-6_4_0-150600_23_17-default-debuginfo-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_22-default-5-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_3-debugsource-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_22-default-debuginfo-5-150600.2.1 * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_234-default-4-2.1 * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_29-debugsource-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_141-default-debuginfo-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_141-default-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_136-default-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_128-default-debuginfo-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_128-default-5-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_32-debugsource-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_136-default-debuginfo-4-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_33-debugsource-3-150400.2.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_29-debugsource-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_141-default-debuginfo-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_141-default-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_136-default-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_128-default-debuginfo-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_128-default-5-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_32-debugsource-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_136-default-debuginfo-4-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_33-debugsource-3-150400.2.1 * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_80-default-debuginfo-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_80-default-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_83-default-debuginfo-4-150500.2.1 *kernel-livepatch-SLE15-SP5_Update_20-debugsource-4-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_19-debugsource-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_83-default-4-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_80-default-debuginfo-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_80-default-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_83-default-debuginfo-4-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_20-debugsource-4-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_19-debugsource-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_83-default-4-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-53104.html * https://bugzilla.suse.com/show_bug.cgi?id=1236783 . SUSE releases a vital security patch for the Linux Kernel tackling CVE-2024-53104. The update comes with essential steps for implementation.. Kernel Update, SUSE Linux, Live Kernel Patch, Security Patching, CVE Fix. . Severity: Important. LinuxSecurity.com Team
Feb 24, 2025
•Important
SuSE
202
security advisorykernel patchimportant updateopenSUSE 15 SP6: 2025:0662-1 Important: Live Patch for CVE-2024-53104
An update that solves one vulnerability can now be installed.. # Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP6) Announcement ID: SUSE-SU-2025:0662-1 Release Date: 2025-02-24T11:33:43Z Rating: important References: * bsc#1236783 Cross-References: * CVE-2024-53104 CVSS scores: * CVE-2024-53104 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 6.4.0-150600_23_22 fixes one issue. The following security issue was fixed: * CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1236783). ## Patch Instructions: To install this SUSE update use the SUSErecommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2025-684=1 SUSE-SLE- Module-Live-Patching-15-SP6-2025-666=1 SUSE-SLE-Module-Live- Patching-15-SP6-2025-673=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-666=1 SUSE-2025-673=1 * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2025-662=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-686=1 SUSE-2025-671=1 SUSE-2025-685=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2025-686=1 SUSE-SLE- Module-Live-Patching-15-SP4-2025-671=1 SUSE-SLE-Module-Live- Patching-15-SP4-2025-685=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-664=1 SUSE-2025-672=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2025-664=1 SUSE-SLE- Module-Live-Patching-15-SP5-2025-672=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP6 (x86_64) * kernel-livepatch-6_4_0-150600_10_11-rt-debuginfo-5-150600.2.1 * kernel-livepatch-6_4_0-150600_10_11-rt-5-150600.2.1 * kernel-livepatch-SLE15-SP6-RT_Update_3-debugsource-5-150600.2.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_4-debugsource-5-150600.2.1 * kernel-livepatch-6_4_0-150600_23_17-default-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_17-default-debuginfo-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_22-default-5-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_3-debugsource-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_22-default-debuginfo-5-150600.2.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_4-debugsource-5-150600.2.1 * kernel-livepatch-6_4_0-150600_23_17-default-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_17-default-debuginfo-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_22-default-5-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_3-debugsource-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_22-default-debuginfo-5-150600.2.1 * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_234-default-4-2.1 * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_29-debugsource-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_141-default-debuginfo-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_141-default-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_136-default-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_128-default-debuginfo-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_128-default-5-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_32-debugsource-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_136-default-debuginfo-4-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_33-debugsource-3-150400.2.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_29-debugsource-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_141-default-debuginfo-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_141-default-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_136-default-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_128-default-debuginfo-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_128-default-5-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_32-debugsource-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_136-default-debuginfo-4-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_33-debugsource-3-150400.2.1 * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_80-default-debuginfo-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_80-default-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_83-default-debuginfo-4-150500.2.1 *kernel-livepatch-SLE15-SP5_Update_20-debugsource-4-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_19-debugsource-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_83-default-4-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_80-default-debuginfo-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_80-default-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_83-default-debuginfo-4-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_20-debugsource-4-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_19-debugsource-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_83-default-4-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-53104.html * https://bugzilla.suse.com/show_bug.cgi?id=1236783 . Crucial announcement regarding Linux Kernel Live Patch enhances defense against vulnerabilities associated with multimedia.. Kernel Patch, OpenSUSE Security, Important Updates, Live Patching. . Severity: Important. LinuxSecurity.com Team
Feb 24, 2025
•Important
OpenSUSE
202
security advisoryhigh severitycriticalopenSUSE 15 SP6: 2025:0650-1 important: Kernel RT media issue fix
An update that solves one vulnerability can now be installed.. # Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6) Announcement ID: SUSE-SU-2025:0650-1 Release Date: 2025-02-22T22:03:56Z Rating: important References: * bsc#1236783 Cross-References: * CVE-2024-53104 CVSS scores: * CVE-2024-53104 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 6.4.0-150600_10_17 fixes one issue. The following security issue was fixed: * CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1236783). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or"zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2025-650=1 SUSE-SLE-Live- Patching-12-SP5-2025-649=1 SUSE-SLE-Live-Patching-12-SP5-2025-646=1 SUSE-SLE- Live-Patching-12-SP5-2025-647=1 SUSE-SLE-Live-Patching-12-SP5-2025-648=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-653=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2025-653=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-658=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2025-658=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2025-640=1 SUSE-SLE- Module-Live-Patching-15-SP6-2025-641=1 SUSE-SLE-Module-Live- Patching-15-SP6-2025-642=1 SUSE-SLE-Module-Live-Patching-15-SP6-2025-644=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_219-default-8-2.1 * kgraft-patch-4_12_14-122_222-default-6-2.1 * kgraft-patch-4_12_14-122_231-default-4-2.1 * kgraft-patch-4_12_14-122_225-default-5-2.1 * kgraft-patch-4_12_14-122_228-default-4-2.1 * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP3_Update_49-debugsource-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_179-default-debuginfo-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_179-default-4-150300.2.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_179-preempt-debuginfo-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_179-preempt-4-150300.2.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP3_Update_49-debugsource-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_179-default-debuginfo-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_179-default-4-150300.2.1 *openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_73-default-debuginfo-5-150500.2.1 * kernel-livepatch-5_14_21-150500_55_73-default-5-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_17-debugsource-5-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_73-default-debuginfo-5-150500.2.1 * kernel-livepatch-5_14_21-150500_55_73-default-5-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le x86_64) * kernel-livepatch-SLE15-SP5_Update_17-debugsource-5-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP6 (x86_64) * kernel-livepatch-SLE15-SP6-RT_Update_1-debugsource-9-150600.2.1 * kernel-livepatch-6_4_0-150600_10_5-rt-debuginfo-9-150600.2.1 * kernel-livepatch-6_4_0-150600_10_17-rt-3-150600.2.1 * kernel-livepatch-SLE15-SP6-RT_Update_2-debugsource-5-150600.2.1 * kernel-livepatch-6_4_0-150600_10_5-rt-9-150600.2.1 * kernel-livepatch-6_4_0-150600_10_14-rt-debuginfo-4-150600.2.1 * kernel-livepatch-SLE15-SP6-RT_Update_5-debugsource-3-150600.2.1 * kernel-livepatch-6_4_0-150600_10_17-rt-debuginfo-3-150600.2.1 * kernel-livepatch-6_4_0-150600_10_14-rt-4-150600.2.1 * kernel-livepatch-6_4_0-150600_10_8-rt-debuginfo-5-150600.2.1 * kernel-livepatch-SLE15-SP6-RT_Update_4-debugsource-4-150600.2.1 * kernel-livepatch-6_4_0-150600_10_8-rt-5-150600.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-53104.html * https://bugzilla.suse.com/show_bug.cgi?id=1236783 . A crucial enhancement for the Linux Kernel Real-Time addresses a significant flaw affecting multimedia capabilities to strengthen system defenses. Ensure your updates are timely.. Linux Kernel Update, openSUSE, Live Patching. . Severity: Important. LinuxSecurity.com Team
Feb 24, 2025
•Important
OpenSUSE
100
security advisoryupdatekernel updateSUSE: 2025:0650-1 critical fix for Kernel RT media issue update
* bsc#1236783 Cross-References: * CVE-2024-53104 . # Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6) Announcement ID: SUSE-SU-2025:0650-1 Release Date: 2025-02-22T22:03:56Z Rating: important References: * bsc#1236783 Cross-References: * CVE-2024-53104 CVSS scores: * CVE-2024-53104 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 6.4.0-150600_10_17 fixes one issue. The following security issue was fixed: * CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1236783). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2025-650=1 SUSE-SLE-Live- Patching-12-SP5-2025-649=1 SUSE-SLE-Live-Patching-12-SP5-2025-646=1 SUSE-SLE- Live-Patching-12-SP5-2025-647=1 SUSE-SLE-Live-Patching-12-SP5-2025-648=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-653=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2025-653=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-658=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2025-658=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2025-640=1 SUSE-SLE- Module-Live-Patching-15-SP6-2025-641=1 SUSE-SLE-Module-Live- Patching-15-SP6-2025-642=1 SUSE-SLE-Module-Live-Patching-15-SP6-2025-644=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_219-default-8-2.1 * kgraft-patch-4_12_14-122_222-default-6-2.1 * kgraft-patch-4_12_14-122_231-default-4-2.1 * kgraft-patch-4_12_14-122_225-default-5-2.1 * kgraft-patch-4_12_14-122_228-default-4-2.1 * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP3_Update_49-debugsource-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_179-default-debuginfo-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_179-default-4-150300.2.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_179-preempt-debuginfo-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_179-preempt-4-150300.2.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP3_Update_49-debugsource-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_179-default-debuginfo-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_179-default-4-150300.2.1 * openSUSE Leap 15.5(ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_73-default-debuginfo-5-150500.2.1 * kernel-livepatch-5_14_21-150500_55_73-default-5-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_17-debugsource-5-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_73-default-debuginfo-5-150500.2.1 * kernel-livepatch-5_14_21-150500_55_73-default-5-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le x86_64) * kernel-livepatch-SLE15-SP5_Update_17-debugsource-5-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP6 (x86_64) * kernel-livepatch-SLE15-SP6-RT_Update_1-debugsource-9-150600.2.1 * kernel-livepatch-6_4_0-150600_10_5-rt-debuginfo-9-150600.2.1 * kernel-livepatch-6_4_0-150600_10_17-rt-3-150600.2.1 * kernel-livepatch-SLE15-SP6-RT_Update_2-debugsource-5-150600.2.1 * kernel-livepatch-6_4_0-150600_10_5-rt-9-150600.2.1 * kernel-livepatch-6_4_0-150600_10_14-rt-debuginfo-4-150600.2.1 * kernel-livepatch-SLE15-SP6-RT_Update_5-debugsource-3-150600.2.1 * kernel-livepatch-6_4_0-150600_10_17-rt-debuginfo-3-150600.2.1 * kernel-livepatch-6_4_0-150600_10_14-rt-4-150600.2.1 * kernel-livepatch-6_4_0-150600_10_8-rt-debuginfo-5-150600.2.1 * kernel-livepatch-SLE15-SP6-RT_Update_4-debugsource-4-150600.2.1 * kernel-livepatch-6_4_0-150600_10_8-rt-5-150600.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-53104.html * https://bugzilla.suse.com/show_bug.cgi?id=1236783 . An essential software patch targeting a vulnerability in the Linux Kernel RT for SLE 15 SP6, enhancing overall system protection.. Kernel Security Update, SUSE Linux Patch, Media Issue Fix, Live Patching. . Severity: Important. LinuxSecurity.com Team
Feb 24, 2025
•Important
SuSE
100
security advisorysecurity issuekernel updateSUSE: 2025:0645-1 important: Kernel Patch for Enhanced Security
* bsc#1227320 * bsc#1227700 * bsc#1236783 Cross-References: . # Security update for the Linux Kernel (Live Patch 56 for SLE 12 SP5) Announcement ID: SUSE-SU-2025:0645-1 Release Date: 2025-02-22T05:33:42Z Rating: important References: * bsc#1227320 * bsc#1227700 * bsc#1236783 Cross-References: * CVE-2021-47511 * CVE-2024-35789 * CVE-2024-53104 CVSS scores: * CVE-2021-47511 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47511 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35789 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53104 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 4.12.14-122_216 fixes several issues. The following security issues were fixed: * CVE-2024-35789: wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes (bsc#1227320). * CVE-2021-47511: ALSA: pcm: oss: fix negative period/buffer sizes (bsc#1227700). * CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1236783). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2025-645=1 SUSE-SLE-Live- Patching-12-SP5-2025-651=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5(ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_201-default-13-2.1 * kgraft-patch-4_12_14-122_216-default-11-2.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47511.html * https://www.suse.com/security/cve/CVE-2024-35789.html * https://www.suse.com/security/cve/CVE-2024-53104.html * https://bugzilla.suse.com/show_bug.cgi?id=1227320 * https://bugzilla.suse.com/show_bug.cgi?id=1227700 * https://bugzilla.suse.com/show_bug.cgi?id=1236783 . Essential patch released for SUSE Linux Kernel addressing ALSA and media issues. Safeguard your device immediately.. Linux Kernel Update, SUSE Security, Kernel Patch, Linux Security Fix, SUSE Linux. . Severity: Important. LinuxSecurity.com Team
Feb 24, 2025
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!