Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -4 articles for you...
100
security advisorykernel updatecriticalSUSE Linux Micro Security Update: Critical Kernel Patches and Reboot Needed
* bsc#1215199 * bsc#1223809 * bsc#1224013 * bsc#1224597 * bsc#1224757 . # Security update for the Linux Kernel Announcement ID: SUSE-SU-2025:20343-1 Release Date: May 23, 2025, 7:19 a.m. Rating: important References: * bsc#1215199 * bsc#1223809 * bsc#1224013 * bsc#1224597 * bsc#1224757 * bsc#1228659 * bsc#1230764 * bsc#1231103 * bsc#1232493 * bsc#1233075 * bsc#1233098 * bsc#1235501 * bsc#1235526 * bsc#1236086 * bsc#1236704 * bsc#1237111 * bsc#1238212 * bsc#1238471 * bsc#1238527 * bsc#1238714 * bsc#1238737 * bsc#1238742 * bsc#1238745 * bsc#1238862 * bsc#1238961 * bsc#1238983 * bsc#1239079 * bsc#1239108 * bsc#1239470 * bsc#1239476 * bsc#1239487 * bsc#1239510 * bsc#1239997 * bsc#1240181 * bsc#1240557 * bsc#1240576 * bsc#1240655 * bsc#1240709 * bsc#1240712 * bsc#1240713 * bsc#1240717 * bsc#1240740 * bsc#1240785 * bsc#1240802 * bsc#1240809 * bsc#1240811 * bsc#1240835 * bsc#1240934 * bsc#1240936 * bsc#1240944 * bsc#1241010 * bsc#1241038 * bsc#1241051 * bsc#1241123 * bsc#1241151 * bsc#1241167 * bsc#1241175 * bsc#1241204 * bsc#1241250 * bsc#1241265 * bsc#1241266 * bsc#1241280 * bsc#1241332 * bsc#1241333 * bsc#1241341 * bsc#1241343 * bsc#1241344 * bsc#1241347 * bsc#1241357 * bsc#1241361 * bsc#1241369 * bsc#1241371 * bsc#1241373 * bsc#1241378 * bsc#1241394 * bsc#1241402 * bsc#1241412 * bsc#1241413 * bsc#1241416 * bsc#1241424 * bsc#1241426 * bsc#1241433 * bsc#1241436 * bsc#1241441 * bsc#1241442 * bsc#1241443 * bsc#1241451 * bsc#1241452 * bsc#1241456 * bsc#1241458 * bsc#1241459 * bsc#1241526 * bsc#1241528 * bsc#1241537 * bsc#1241541 * bsc#1241545 * bsc#1241547 * bsc#1241548 * bsc#1241550 * bsc#1241573 * bsc#1241574 * bsc#1241575 * bsc#1241578 * bsc#1241590 * bsc#1241593 * bsc#1241598 * bsc#1241599 * bsc#1241601 * bsc#1241626 * bsc#1241640 * bsc#1241648 * bsc#1242006 * bsc#1242044 *bsc#1242172 * bsc#1242283 * bsc#1242307 * bsc#1242313 * bsc#1242314 * bsc#1242315 * bsc#1242321 * bsc#1242326 * bsc#1242327 * bsc#1242328 * bsc#1242332 * bsc#1242333 * bsc#1242335 * bsc#1242336 * bsc#1242342 * bsc#1242343 * bsc#1242344 * bsc#1242345 * bsc#1242346 * bsc#1242347 * bsc#1242348 * bsc#1242414 * bsc#1242526 * bsc#1242528 * bsc#1242534 * bsc#1242535 * bsc#1242536 * bsc#1242537 * bsc#1242538 * bsc#1242539 * bsc#1242540 * bsc#1242546 * bsc#1242556 * bsc#1242596 * bsc#1242710 * bsc#1242778 * bsc#1242831 * bsc#1242985 Cross-References: * CVE-2023-53034 * CVE-2024-27018 * CVE-2024-27415 * CVE-2024-28956 * CVE-2024-35840 * CVE-2024-46763 * CVE-2024-46865 * CVE-2024-50083 * CVE-2024-50162 * CVE-2024-50163 * CVE-2024-56641 * CVE-2024-56702 * CVE-2024-57924 * CVE-2024-57998 * CVE-2024-58001 * CVE-2024-58068 * CVE-2024-58070 * CVE-2024-58088 * CVE-2024-58093 * CVE-2024-58094 * CVE-2024-58095 * CVE-2024-58096 * CVE-2024-58097 * CVE-2025-21683 * CVE-2025-21696 * CVE-2025-21707 * CVE-2025-21758 * CVE-2025-21768 * CVE-2025-21792 * CVE-2025-21808 * CVE-2025-21812 * CVE-2025-21833 * CVE-2025-21852 * CVE-2025-21853 * CVE-2025-21854 * CVE-2025-21867 * CVE-2025-21904 * CVE-2025-21925 * CVE-2025-21926 * CVE-2025-21931 * CVE-2025-21962 * CVE-2025-21963 * CVE-2025-21964 * CVE-2025-21980 * CVE-2025-21985 * CVE-2025-21999 * CVE-2025-22004 * CVE-2025-22015 * CVE-2025-22016 * CVE-2025-22017 * CVE-2025-22018 * CVE-2025-22020 * CVE-2025-22025 * CVE-2025-22027 * CVE-2025-22029 * CVE-2025-22033 * CVE-2025-22036 * CVE-2025-22044 * CVE-2025-22045 * CVE-2025-22050 * CVE-2025-22053 * CVE-2025-22055 * CVE-2025-22058 * CVE-2025-22060 * CVE-2025-22062 * CVE-2025-22064 * CVE-2025-22065 * CVE-2025-22075 * CVE-2025-22080 * CVE-2025-22086 * CVE-2025-22088 * CVE-2025-22090 * CVE-2025-22093 * CVE-2025-22097 *CVE-2025-22102 * CVE-2025-22104 * CVE-2025-22105 * CVE-2025-22106 * CVE-2025-22107 * CVE-2025-22108 * CVE-2025-22109 * CVE-2025-22115 * CVE-2025-22116 * CVE-2025-22121 * CVE-2025-22128 * CVE-2025-23129 * CVE-2025-23131 * CVE-2025-23133 * CVE-2025-23136 * CVE-2025-23138 * CVE-2025-23145 * CVE-2025-37785 * CVE-2025-37798 * CVE-2025-37799 * CVE-2025-37860 * CVE-2025-39728 CVSS scores: * CVE-2023-53034 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2023-53034 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27018 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27018 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27415 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L * CVE-2024-28956 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-28956 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N * CVE-2024-28956 ( NVD ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2024-28956 ( NVD ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N * CVE-2024-35840 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-46763 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-46763 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-46865 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-46865 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-50083 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-50083 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-50162 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-50162 ( SUSE ): 4.4CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-50162 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-50163 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-50163 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-50163 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-56641 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-56641 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-56702 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-56702 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-56702 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-57924 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-57924 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-57998 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-58001 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2024-58001 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-58068 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-58068 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-58070 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-58070 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-58088 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-58088 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-58088 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-58093 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-58093 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-58094 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-58094 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-58095 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-58095 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-58096 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2024-58096 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-58097 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-58097 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-58097 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21683 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-21683 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-21683 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21696 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21696 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21707 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21707 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21758 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21768 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21792 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21808 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21812 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-21812 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-21812 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-21833 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-21833 ( SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21833 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21852 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21852 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21853 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21854 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21854 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21867 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21867 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-21904 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-21904 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21904 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21925 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-21925 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21926 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-21926 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21931 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-21931 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21962 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-21962 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2025-21962 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21963 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-21963 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21963 ( NVD ): 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21964 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-21964 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21964 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21980 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-21980 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21980 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21985 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-21985 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21999 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-21999 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-21999 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-22004 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-22004 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-22004 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-22015 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22015 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22016 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22016 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22017 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22017 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22018 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22018 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22018 ( NVD ): 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22020 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-22020 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-22020 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-22025 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-22025 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-22027 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22027 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22027 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22029 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-22029 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-22033 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22033 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22033 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22036 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22036 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22036 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-22044 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22044 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22045 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22045 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22050 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22050 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22053 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22053 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22055 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22055 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2025-22058 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-22058 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-22060 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22062 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22062 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22062 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22064 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22064 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22065 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22065 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22065 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22075 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22075 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22080 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22080 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22080 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22086 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22086 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22088 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22088 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22088 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-22090 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22090 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22093 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22093 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22097 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-22097 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-22097 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-22102 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22102 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22104 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22104 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2025-22105 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22105 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22106 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22106 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22107 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-22107 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H * CVE-2025-22108 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-22108 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2025-22109 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N *CVE-2025-22109 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22115 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-22115 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-22116 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-22116 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2025-22121 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22121 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22128 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22128 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-23129 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-23129 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-23131 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-23131 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-23133 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-23133 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-23136 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-23136 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-23136 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-23138 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-23138 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-23145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-23145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-37785 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-37785 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H * CVE-2025-37785 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2025-37798 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-37799 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-37860 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-37860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-37860 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-39728 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-39728 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-39728 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 * SUSE Linux Micro Extras 6.0 An update that solves 96 vulnerabilities and has 55 fixes can now be installed. ## Description: The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-28956: x86/ibt: Keep IBT disabled during alternative patching (bsc#1242006). * CVE-2024-35840: mptcp: use OPTION_MPTCP_MPJ_SYNACK in subflow_finish_connect() (bsc#1224597). * CVE-2024-50162: bpf: selftests: send packet to devmap redirect XDP (bsc#1233075). * CVE-2024-50163: bpf: Make sure internal and UAPI bpf_redirect flags do not overlap (bsc#1233098). * CVE-2024-57924: fs: relax assertions on failure to encode file handles (bsc#1236086). * CVE-2024-58068: OPP: fix dev_pm_opp_find_bw_*() when bandwidth table not initialized (bsc#1238961). * CVE-2024-58070: bpf: bpf_local_storage: Always use bpf_mem_alloc in PREEMPT_RT (bsc#1238983). * CVE-2024-58088: bpf: Fix deadlock when freeing cgroup storage (bsc#1239510). * CVE-2025-21683: bpf: Fixbpf_sk_select_reuseport() memory leak (bsc#1236704). * CVE-2025-21696: mm: clear uffd-wp PTE/PMD state on mremap() (bsc#1237111). * CVE-2025-21707: mptcp: consolidate suboption status (bsc#1238862). * CVE-2025-21758: ipv6: mcast: add RCU protection to mld_newpack() (bsc#1238737). * CVE-2025-21768: net: ipv6: fix dst ref loops in rpl, seg6 and ioam6 lwtunnels (bsc#1238714). * CVE-2025-21792: ax25: Fix refcount leak caused by setting SO_BINDTODEVICE sockopt (bsc#1238745). * CVE-2025-21808: net: xdp: Disallow attaching device-bound programs in generic mode (bsc#1238742). * CVE-2025-21812: ax25: rcu protect dev-> ax25_ptr (bsc#1238471). * CVE-2025-21833: iommu/vt-d: Avoid use of NULL after WARN_ON_ONCE (bsc#1239108). * CVE-2025-21854: selftest/bpf: Add vsock test for sockmap rejecting unconnected (bsc#1239470). * CVE-2025-21867: bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type() (bsc#1240181). * CVE-2025-21904: caif_virtio: fix wrong pointer check in cfv_probe() (bsc#1240576). * CVE-2025-21925: llc: do not use skb_get() before dev_queue_xmit() (bsc#1240713). * CVE-2025-21926: net: gso: fix ownership in __udp_gso_segment (bsc#1240712). * CVE-2025-21931: hwpoison, memory_hotplug: lock folio before unmap hwpoisoned folio (bsc#1240709). * CVE-2025-21962: cifs: Fix integer overflow while processing closetimeo mount option (bsc#1240655). * CVE-2025-21963: cifs: Fix integer overflow while processing acdirmax mount option (bsc#1240717). * CVE-2025-21964: cifs: Fix integer overflow while processing acregmax mount option (bsc#1240740). * CVE-2025-21980: sched: address a potential NULL pointer dereference in the GRED scheduler (bsc#1240809). * CVE-2025-21985: drm/amd/display: Fix out-of-bound accesses (bsc#1240811). * CVE-2025-21999: proc: fix UAF in proc_get_inode() (bsc#1240802). * CVE-2025-22004: net: atm: fix use after free in lec_send() (bsc#1240835). * CVE-2025-22015: mm/migrate: fix shmem xarray updateduring migration (bsc#1240944). * CVE-2025-22016: dpll: fix xa_alloc_cyclic() error handling (bsc#1240934). * CVE-2025-22017: devlink: fix xa_alloc_cyclic() error handling (bsc#1240936). * CVE-2025-22018: atm: Fix NULL pointer dereference (bsc#1241266). * CVE-2025-22029: exec: fix the racy usage of fs_struct-> in_exec (bsc#1241378). * CVE-2025-22036: exfat: fix random stack corruption after get_block (bsc#1241426). * CVE-2025-22045: x86/mm: Fix flush_tlb_range() when used for zapping normal PMDs (bsc#1241433). * CVE-2025-22053: net: ibmveth: make veth_pool_store stop hanging (bsc#1241373). * CVE-2025-22055: net: fix geneve_opt length integer overflow (bsc#1241371). * CVE-2025-22058: udp: Fix memory accounting leak (bsc#1241332). * CVE-2025-22060: net: mvpp2: Prevent parser TCAM memory corruption (bsc#1241526). * CVE-2025-22064: netfilter: nf_tables: do not unregister hook when table is dormant (bsc#1241413). * CVE-2025-22080: fs/ntfs3: Prevent integer overflow in hdr_first_de() (bsc#1241416). * CVE-2025-22090: mm: (un)track_pfn_copy() fix + doc improvements (bsc#1241537). * CVE-2025-22102: Bluetooth: btnxpuart: Fix kernel panic during FW release (bsc#1241456). * CVE-2025-22104: ibmvnic: Use kernel helpers for hex dumps (bsc#1241550). * CVE-2025-22105, CVE-2025-37860: Add missing bugzilla references (bsc#1241452 bsc#1241548). * CVE-2025-22107: net: dsa: sja1105: fix kasan out-of-bounds warning in sja1105_table_delete_entry() (bsc#1241575). * CVE-2025-22109: ax25: Remove broken autobind (bsc#1241573). * CVE-2025-22115: btrfs: fix block group refcount race in btrfs_create_pending_block_groups() (bsc#1241578). * CVE-2025-22121: ext4: fix out-of-bound read in ext4_xattr_inode_dec_ref_all() (bsc#1241593). * CVE-2025-23133: wifi: ath11k: update channel list in reg notifier instead reg worker (bsc#1241451). * CVE-2025-23138: watch_queue: fix pipe accounting mismatch (bsc#1241648). * CVE-2025-23145: mptcp: fix NULLpointer in can_accept_new_subflow (bsc#1242596). * CVE-2025-37785: ext4: fix OOB read when checking dotdot dir (bsc#1241640). * CVE-2025-37798: codel: remove sch-> q.qlen check before qdisc_tree_reduce_backlog() (bsc#1242414). * CVE-2025-37799: vmxnet3: Fix malformed packet sizing in vmxnet3_process_xdp (bsc#1242283). * CVE-2025-39728: clk: samsung: Fix UBSAN panic in samsung_clk_init() (bsc#1241626). The following non-security bugs were fixed: * ACPI PPTT: Fix coding mistakes in a couple of sizeof() calls (stable-fixes). * ACPI: EC: Set ec_no_wakeup for Lenovo Go S (stable-fixes). * ALSA: hda/realtek - Enable speaker for HP platform (git-fixes). * ALSA: hda/realtek - Fixed ASUS platform headset Mic issue (git-fixes). * ALSA: hda/realtek: Fix built-mic regression on other ASUS models (git- fixes). * ALSA: hda: intel: Add Lenovo IdeaPad Z570 to probe denylist (stable-fixes). * ALSA: hda: intel: Fix Optimus when GPU has no sound (stable-fixes). * ALSA: ump: Fix buffer overflow at UMP SysEx message conversion (bsc#1242044). * ALSA: usb-audio: Add retry on -EPROTO from usb_set_interface() (stable- fixes). * ALSA: usb-audio: Add second USB ID for Jabra Evolve 65 headset (stable- fixes). * ALSA: usb-audio: Fix CME quirk for UF series keyboards (stable-fixes). * ASoC: Intel: avs: Fix null-ptr-deref in avs_component_probe() (git-fixes). * ASoC: SOF: topology: Use krealloc_array() to replace krealloc() (stable- fixes). * ASoC: Use of_property_read_bool() (stable-fixes). * ASoC: amd: Add DMI quirk for ACP6X mic support (stable-fixes). * ASoC: amd: yc: update quirk data for new Lenovo model (stable-fixes). * ASoC: codecs:lpass-wsa-macro: Fix logic of enabling vi channels (git-fixes). * ASoC: codecs:lpass-wsa-macro: Fix vi feedback rate (git-fixes). * ASoC: fsl_audmix: register card device depends on 'dais' property (stable- fixes). * ASoC: qcom: Fix sc7280 lpass potential buffer overflow (git-fixes). * ASoC: soc-core: Stop usingof_property_read_bool() for non-boolean properties (stable-fixes). * ASoC: soc-pcm: Fix hw_params() and DAPM widget sequence (git-fixes). * Bluetooth: btrtl: Prevent potential NULL dereference (git-fixes). * Bluetooth: btusb: avoid NULL pointer dereference in skb_dequeue() (git- fixes). * Bluetooth: hci_event: Fix sending MGMT_EV_DEVICE_FOUND for invalid address (git-fixes). * Bluetooth: hci_uart: Fix another race during initialization (git-fixes). * Bluetooth: hci_uart: fix race during initialization (stable-fixes). * Bluetooth: l2cap: Check encryption key size on incoming connection (git- fixes). * Bluetooth: l2cap: Process valid commands in too long frame (stable-fixes). * Bluetooth: vhci: Avoid needless snprintf() calls (git-fixes). * Drop PCI patch that caused a regression (bsc#1241123) * Input: cyttsp5 - ensure minimum reset pulse width (git-fixes). * Input: mtk-pmic-keys - fix possible null pointer dereference (git-fixes). * Input: xpad - fix two controller table values (git-fixes). * OPP: add index check to assert to avoid buffer overflow in _read_freq() (bsc#1238961) * PCI/MSI: Add an option to write MSIX ENTRY_DATA before any reads (git- fixes). * PCI: vmd: Make vmd_dev::cfg_lock a raw_spinlock_t type (stable-fixes). * RDMA/cma: Fix workqueue crash in cma_netevent_work_handler (git-fixes) * RDMA/core: Silence oversized kvmalloc() warning (git-fixes) * RDMA/hns: Fix wrong maximum DMA segment size (git-fixes) * RDMA/mana_ib: Ensure variable err is initialized (git-fixes). * RDMA/usnic: Fix passing zero to PTR_ERR in usnic_ib_pci_probe() (git-fixes) * Revert "drivers: core: synchronize really_probe() and dev_uevent()" (stable- fixes). * Revert "drm/meson: vclk: fix calculation of 59.94 fractional rates" (git- fixes). * Revert "tcp: Fix bind() regression for v6-only wildcard and" * Revert "wifi: mac80211: Update skb's control block key in ieee80211_tx_dequeue()" (git-fixes). * USB: OHCI: Add quirk for LS7A OHCIcontroller (rev 0x02) (stable-fixes). * USB: VLI disk crashes if LPM is used (stable-fixes). * USB: serial: ftdi_sio: add support for Abacus Electrics Optical Probe (stable-fixes). * USB: serial: option: add Sierra Wireless EM9291 (stable-fixes). * USB: serial: simple: add OWON HDS200 series oscilloscope support (stable- fixes). * USB: storage: quirk for ADATA Portable HDD CH94 (stable-fixes). * USB: usbtmc: use interruptible sleep in usbtmc_read (git-fixes). * USB: wdm: add annotation (git-fixes). * USB: wdm: close race between wdm_open and wdm_wwan_port_stop (git-fixes). * USB: wdm: handle IO errors in wdm_wwan_port_start (git-fixes). * USB: wdm: wdm_wwan_port_tx_complete mutex in atomic context (git-fixes). * ahci: add PCI ID for Marvell 88SE9215 SATA Controller (stable-fixes). * asus-laptop: Fix an uninitialized variable (git-fixes). * ata: libata-sata: Save all fields from sense data descriptor (git-fixes). * ata: libata-scsi: Fix ata_mselect_control_ata_feature() return type (git- fixes). * ata: libata-scsi: Fix ata_msense_control_ata_feature() (git-fixes). * ata: libata-scsi: Improve CDL control (git-fixes). * ata: pata_pxa: Fix potential NULL pointer dereference in pxa_ata_probe() (git-fixes). * ata: sata_sx4: Add error handling in pdc20621_i2c_read() (git-fixes). * auxdisplay: hd44780: Convert to platform remove callback returning void (stable-fixes). * auxdisplay: hd44780: Fix an API misuse in hd44780.c (git-fixes). * badblocks: Fix error shitf ops (git-fixes). * badblocks: fix merge issue when new badblocks align with pre+1 (git-fixes). * badblocks: fix missing bad blocks on retry in _badblocks_check() (git- fixes). * badblocks: fix the using of MAX_BADBLOCKS (git-fixes). * badblocks: return error directly when setting badblocks exceeds 512 (git- fixes). * badblocks: return error if any badblock set fails (git-fixes). * blk-throttle: fix lower bps rate by throtl_trim_slice() (git-fixes). * block: changeblk_mq_add_to_batch() third argument type to bool (git-fixes). * block: fix 'kmem_cache of name 'bio-108' already exists' (git-fixes). * block: fix conversion of GPT partition name to 7-bit (git-fixes). * block: fix resource leak in blk_register_queue() error path (git-fixes). * block: integrity: Do not call set_page_dirty_lock() (git-fixes). * block: make sure -> nr_integrity_segments is cloned in blk_rq_prep_clone (git-fixes). * bnxt_en: Linearize TX SKB if the fragments exceed the max (git-fixes). * bnxt_en: Mask the bd_cnt field in the TX BD properly (git-fixes). * bpf: Add missed var_off setting in coerce_subreg_to_size_sx() (git-fixes). * bpf: Add missed var_off setting in set_sext32_default_val() (git-fixes). * bpf: add find_containing_subprog() utility function (bsc#1241590). * bpf: check changes_pkt_data property for extension programs (bsc#1241590). * bpf: consider that tail calls invalidate packet pointers (bsc#1241590). * bpf: fix null dereference when computing changes_pkt_data of prog w/o subprogs (bsc#1241590). * bpf: refactor bpf_helper_changes_pkt_data to use helper number (bsc#1241590). * bpf: track changes_pkt_data property for global functions (bsc#1241590). * btrfs: add and use helper to verify the calling task has locked the inode (bsc#1241204). * btrfs: always fallback to buffered write if the inode requires checksum (bsc#1242831 bsc#1242710). * btrfs: fix hole expansion when writing at an offset beyond EOF (bsc#1241151). * btrfs: fix missing snapshot drew unlock when root is dead during swap activation (bsc#1241204). * btrfs: fix race with memory mapped writes when activating swap file (bsc#1241204). * btrfs: fix swap file activation failure due to extents that used to be shared (bsc#1241204). * can: gw: fix RCU/BH usage in cgw_create_job() (git-fixes). * can: mcan: m_can_class_unregister(): fix order of unregistration calls (git- fixes). * can: mcp251xfd: fix TDC setting for low data bit rates(git-fixes). * can: mcp251xfd: mcp251xfd_remove(): fix order of unregistration calls (git- fixes). * cdc_ether|r8152: ThinkPad Hybrid USB-C/A Dock quirk (stable-fixes). * char: misc: register chrdev region with all possible minors (git-fixes). * cifs: Fix integer overflow while processing actimeo mount option (git- fixes). * crypto: atmel-sha204a - Set hwrng quality to lowest possible (git-fixes). * crypto: caam/qi - Fix drv_ctx refcount bug (git-fixes). * crypto: ccp - Add support for PCI device 0x1134 (stable-fixes). * cxgb4: fix memory leak in cxgb4_init_ethtool_filters() error path (git- fixes). * dm-bufio: do not schedule in atomic context (git-fixes). * dm-ebs: fix prefetch-vs-suspend race (git-fixes). * dm-integrity: set ti-> error on memory allocation failure (git-fixes). * dm-verity: fix prefetch-vs-suspend race (git-fixes). * dm: add missing unlock on in dm_keyslot_evict() (git-fixes). * dm: always update the array size in realloc_argv on success (git-fixes). * dm: fix copying after src array boundaries (git-fixes). * dmaengine: dmatest: Fix dmatest waiting less when interrupted (stable- fixes). * drivers: base: devres: Allow to release group on device release (stable- fixes). * drm/amd/display: Add scoped mutexes for amdgpu_dm_dhcp (stable-fixes). * drm/amd/display: Copy AUX read reply data whenever length > 0 (git-fixes). * drm/amd/display: Fix gpu reset in multidisplay config (git-fixes). * drm/amd/display: Fix slab-use-after-free in hdcp (git-fixes). * drm/amd/display: Fix wrong handling for AUX_DEFER case (git-fixes). * drm/amd/display: Force full update in gpu reset (stable-fixes). * drm/amd/display: Remove incorrect checking in dmub aux handler (git-fixes). * drm/amd/display: Shift DMUB AUX reply command if necessary (git-fixes). * drm/amd/display: add workaround flag to link to force FFE preset (stable- fixes). * drm/amd: Handle being compiled without SI or CIK support better (stable- fixes). *drm/amdgpu/hdp5.2: use memcfg register to post the write for HDP flush (git- fixes). * drm/amdgpu: handle amdgpu_cgs_create_device() errors in amd_powerplay_create() (stable-fixes). * drm/amdkfd: Fix mode1 reset crash issue (stable-fixes). * drm/amdkfd: Fix pqm_destroy_queue race with GPU reset (stable-fixes). * drm/amdkfd: clamp queue size to minimum (stable-fixes). * drm/amdkfd: debugfs hang_hws skip GPU with MES (stable-fixes). * drm/bridge: panel: forbid initializing a panel with unknown connector type (stable-fixes). * drm/fdinfo: Protect against driver unbind (git-fixes). * drm/i915/dg2: wait for HuC load completion before running selftests (stable- fixes). * drm/i915/gvt: fix unterminated-string-initialization warning (stable-fixes). * drm/i915/pxp: fix undefined reference to `intel_pxp_gsccs_is_ready_for_sessions' (git-fixes). * drm/i915/xelpg: Extend driver code of Xe_LPG to Xe_LPG+ (stable-fixes). * drm/i915: Disable RPG during live selftest (git-fixes). * drm/mediatek: mtk_dpi: Explicitly manage TVD clock in power on/off (stable- fixes). * drm/mediatek: mtk_dpi: Move the input_2p_en bit to platform data (stable- fixes). * drm/nouveau: Fix WARN_ON in nouveau_fence_context_kill() (git-fixes). * drm/panel: simple: Update timings for AUO G101EVN010 (git-fixes). * drm/tests: Add helper to create mock crtc (stable-fixes). * drm/tests: Add helper to create mock plane (stable-fixes). * drm/tests: Build KMS helpers when DRM_KUNIT_TEST_HELPERS is enabled (git- fixes). * drm/tests: cmdline: Fix drm_display_mode memory leak (git-fixes). * drm/tests: helpers: Add atomic helpers (stable-fixes). * drm/tests: helpers: Add helper for drm_display_mode_from_cea_vic() (stable- fixes). * drm/tests: helpers: Create kunit helper to destroy a drm_display_mode (stable-fixes). * drm/tests: helpers: Fix compiler warning (git-fixes). * drm/tests: modes: Fix drm_display_mode memory leak (git-fixes). * drm/tests: probe-helper: Fixdrm_display_mode memory leak (git-fixes). * drm: Select DRM_KMS_HELPER from DRM_DEBUG_DP_MST_TOPOLOGY_REFS (git-fixes). * drm: allow encoder mode_set even when connectors change for crtc (stable- fixes). * drm: panel-orientation-quirks: Add new quirk for GPD Win 2 (stable-fixes). * drm: panel-orientation-quirks: Add quirk for AYA NEO Slide (stable-fixes). * drm: panel-orientation-quirks: Add quirk for OneXPlayer Mini (Intel) (stable-fixes). * drm: panel-orientation-quirks: Add quirks for AYA NEO Flip DS and KB (stable-fixes). * drm: panel-orientation-quirks: Add support for AYANEO 2S (stable-fixes). * e1000e: change k1 configuration on MTP and later platforms (git-fixes). * eth: bnxt: fix missing ring index trim on error path (git-fixes). * ethtool: Fix context creation with no parameters (git-fixes). * ethtool: Fix set RXNFC command with symmetric RSS hash (git-fixes). * ethtool: Fix wrong mod state in case of verbose and no_mask bitset (git- fixes). * ethtool: do not propagate EOPNOTSUPP from dumps (git-fixes). * ethtool: fix setting key and resetting indir at once (git-fixes). * ethtool: netlink: Add missing ethnl_ops_begin/complete (git-fixes). * ethtool: netlink: do not return SQI value if link is down (git-fixes). * ethtool: plca: fix plca enable data type while parsing the value (git- fixes). * ethtool: rss: echo the context number back (git-fixes). * exfat: do not fallback to buffered write (git-fixes). * exfat: drop -> i_size_ondisk (git-fixes). * exfat: fix soft lockup in exfat_clear_bitmap (git-fixes). * exfat: short-circuit zero-byte writes in exfat_file_write_iter (git-fixes). * ext4: add missing brelse() for bh2 in ext4_dx_add_entry() (bsc#1242342). * ext4: correct encrypted dentry name hash when not casefolded (bsc#1242540). * ext4: do not over-report free space or inodes in statvfs (bsc#1242345). * ext4: do not treat fhandle lookup of ea_inode as FS corruption (bsc#1242347). * ext4: fix FS_IOC_GETFSMAP handling(bsc#1240557). * ext4: goto right label 'out_mmap_sem' in ext4_setattr() (bsc#1242556). * ext4: make block validity check resistent to sb bh corruption (bsc#1242348). * ext4: partial zero eof block on unaligned inode size extension (bsc#1242336). * ext4: protect ext4_release_dquot against freezing (bsc#1242335). * ext4: replace the traditional ternary conditional operator with with max()/min() (bsc#1242536). * ext4: treat end of range as exclusive in ext4_zero_range() (bsc#1242539). * ext4: unify the type of flexbg_size to unsigned int (bsc#1242538). * fbdev: omapfb: Add 'plane' value check (stable-fixes). * firmware: arm_ffa: Skip Rx buffer ownership release if not acquired (git- fixes). * firmware: arm_scmi: Balance device refcount when destroying devices (git- fixes). * fs/jfs: Prevent integer overflow in AG size calculation (git-fixes). * fs/jfs: cast inactags to s64 to prevent potential overflow (git-fixes). * fs/ntfs3: add prefix to bitmap_size() and use BITS_TO_U64() (bsc#1241250). * fs: better handle deep ancestor chains in is_subdir() (bsc#1242528). * fs: consistently deref the files table with rcu_dereference_raw() (bsc#1242535). * fs: do not allow non-init s_user_ns for filesystems without FS_USERNS_MOUNT (bsc#1242526). * fs: support relative paths with FSCONFIG_SET_STRING (git-fixes). * gpio: zynq: Fix wakeup source leaks on device unbind (stable-fixes). * gve: handle overflow when reporting TX consumed descriptors (git-fixes). * gve: set xdp redirect target only when it is available (git-fixes). * hfs/hfsplus: fix slab-out-of-bounds in hfs_bnode_read_key (git-fixes). * i2c: cros-ec-tunnel: defer probe if parent EC is not present (git-fixes). * i2c: imx-lpi2c: Fix clock count when probe defers (git-fixes). * ice: Add check for devm_kzalloc() (git-fixes). * ice: fix reservation of resources for RDMA when disabled (git-fixes). * ice: stop truncating queue ids when checking (git-fixes). * idpf: check error forregister_netdev() on init (git-fixes). * idpf: fix adapter NULL pointer dereference on reboot (git-fixes). * igb: reject invalid external timestamp requests for 82580-based HW (git- fixes). * igc: add lock preventing multiple simultaneous PTM transactions (git-fixes). * igc: cleanup PTP module if probe fails (git-fixes). * igc: fix PTM cycle trigger logic (git-fixes). * igc: handle the IGC_PTP_ENABLED flag correctly (git-fixes). * igc: increase wait time before retrying PTM (git-fixes). * igc: move ktime snapshot into PTM retry loop (git-fixes). * iio: accel: adxl367: fix setting odr for activity time update (git-fixes). * iio: adc: ad7606: fix serial register access (git-fixes). * iio: adc: ad7768-1: Fix conversion result sign (git-fixes). * iio: adc: ad7768-1: Move setting of val a bit later to avoid unnecessary return value check (stable-fixes). * iio: adis16201: Correct inclinometer channel resolution (git-fixes). * iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_fifo (git- fixes). * iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_tagged_fifo (git-fixes). * iio: temp: maxim-thermocouple: Fix potential lack of DMA safe buffer (git- fixes). * iommu: Fix two issues in iommu_copy_struct_from_user() (git-fixes). * ipv4: fib: annotate races around nh-> nh_saddr_genid and nh-> nh_saddr (git- fixes). * irqchip/davinci: Remove leftover header (git-fixes). * irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode() (git-fixes). * irqchip/qcom-mpm: Prevent crash when trying to handle non-wake GPIOs (git- fixes). * isofs: fix KMSAN uninit-value bug in do_isofs_readdir() (bsc#1242307). * jbd2: add a missing data flush during file and fs synchronization (bsc#1242346). * jbd2: fix off-by-one while erasing journal (bsc#1242344). * jbd2: flush filesystem device before updating tail sequence (bsc#1242333). * jbd2: increase IO priority for writing revoke records (bsc#1242332). * jbd2: increase the journal IO'spriority (bsc#1242537). * jbd2: remove wrong sb-> s_sequence check (bsc#1242343). * jfs: Fix uninit-value access of imap allocated in the diMount() function (git-fixes). * jfs: Prevent copying of nlink with value 0 from disk inode (git-fixes). * jfs: add sanity check for agwidth in dbMount (git-fixes). * kABI fix for sctp: detect and prevent references to a freed transport in sendmsg (git-fixes). * kABI workaround for powercap update (bsc#1241010). * ktest: Fix Test Failures Due to Missing LOG_FILE Directories (stable-fixes). * kunit: qemu_configs: SH: Respect kunit cmdline (git-fixes). * loop: LOOP_SET_FD: send uevents for partitions (git-fixes). * loop: properly send KOBJ_CHANGED uevent for disk device (git-fixes). * loop: stop using vfs_iter_{read,write} for buffered I/O (git-fixes). * md/md-bitmap: fix wrong bitmap_limit for clustermd when write sb (bsc#1238212) * media: uvcvideo: Add quirk for Actions UVC05 (stable-fixes). * mei: me: add panther lake H DID (stable-fixes). * misc: microchip: pci1xxxx: Fix Kernel panic during IRQ handler registration (git-fixes). * misc: microchip: pci1xxxx: Fix incorrect IRQ status handling during ack (git-fixes). * mm/readahead: fix large folio support in async readahead (bsc#1242321). * mm: fix error handling in __filemap_get_folio() with FGP_NOWAIT (bsc#1242326). * mm: fix filemap_get_folios_contig returning batches of identical folios (bsc#1242327). * mm: fix oops when filemap_map_pmd() without prealloc_pte (bsc#1242546). * mmc: dw_mmc: add a quirk for accessing 64-bit FIFOs in two halves (stable- fixes). * mmc: renesas_sdhi: Fix error handling in renesas_sdhi_probe (git-fixes). * mptcp: mptcp_parse_option() fix for MPTCPOPT_MP_JOIN (git-fixes). * mptcp: refine opt_mp_capable determination (git-fixes). * mptcp: relax check on MPC passive fallback (git-fixes). * mptcp: strict validation before using mp_opt-> hmac (git-fixes). * mptcp: use OPTION_MPTCP_MPJ_SYN in subflow_check_req()(git-fixes). * net/mlx5: Fill out devlink dev info only for PFs (git-fixes). * net/mlx5: IRQ, Fix null string in debug print (git-fixes). * net/mlx5: Lag, Check shared fdb before creating MultiPort E-Switch (git- fixes). * net/mlx5: Start health poll after enable hca (git-fixes). * net/mlx5e: Fix ethtool -N flow-type ip4 to RSS context (git-fixes). * net/mlx5e: Prevent bridge link show failure for non-eswitch-allowed devices (git-fixes). * net/mlx5e: SHAMPO, Make reserved size independent of page size (git-fixes). * net/tcp: refactor tcp_inet6_sk() (git-fixes). * net: annotate data-races around sk-> sk_dst_pending_confirm (git-fixes). * net: annotate data-races around sk-> sk_tx_queue_mapping (git-fixes). * net: blackhole_dev: fix build warning for ethh set but not used (git-fixes). * net: ethtool: Do not call .cleanup_data when prepare_data fails (git-fixes). * net: ethtool: Fix RSS setting (git-fixes). * net: ipv6: fix UDPv6 GSO segmentation with NAT (git-fixes). * net: mana: Switch to page pool for jumbo frames (git-fixes). * net: mark racy access on sk-> sk_rcvbuf (git-fixes). * net: phy: leds: fix memory leak (git-fixes). * net: phy: microchip: force IRQ polling mode for lan88xx (git-fixes). * net: sctp: fix skb leak in sctp_inq_free() (git-fixes). * net: set SOCK_RCU_FREE before inserting socket into hashtable (git-fixes). * net: usb: asix_devices: add FiberGecko DeviceID (stable-fixes). * net_sched: drr: Fix double list add in class with netem as child qdisc (git- fixes). * net_sched: ets: Fix double list add in class with netem as child qdisc (git- fixes). * net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc (git-fixes). * net_sched: qfq: Fix double list add in class with netem as child qdisc (git- fixes). * netpoll: Use rcu_access_pointer() in netpoll_poll_lock (git-fixes). * nfs: add missing selections of CONFIG_CRC32 (git-fixes). * nfsd: decrease sc_count directly if fail to queue dl_recall(git-fixes). * ntb: reduce stack usage in idt_scan_mws (stable-fixes). * ntb_hw_amd: Add NTB PCI ID for new gen CPU (stable-fixes). * nvme-pci: clean up CMBMSC when registering CMB fails (git-fixes). * nvme-pci: fix stuck reset on concurrent DPC and HP (git-fixes). * nvme-pci: skip CMB blocks incompatible with PCI P2P DMA (git-fixes). * nvme-pci: skip nvme_write_sq_db on empty rqlist (git-fixes). * nvme-tcp: fix possible UAF in nvme_tcp_poll (git-fixes). * nvme/ioctl: do not warn on vectorized uring_cmd with fixed buffer (git- fixes). * nvmet-fcloop: swap list_add_tail arguments (git-fixes). * perf: arm_cspmu: nvidia: enable NVLINK-C2C port filtering (bsc#1242172) * perf: arm_cspmu: nvidia: fix sysfs path in the kernel doc (bsc#1242172) * perf: arm_cspmu: nvidia: monitor all ports by default (bsc#1242172) * perf: arm_cspmu: nvidia: remove unsupported SCF events (bsc#1242172) * phy: freescale: imx8m-pcie: assert phy reset and perst in power off (git- fixes). * pinctrl: renesas: rza2: Fix potential NULL pointer dereference (stable- fixes). * platform/x86/amd/pmc: Declare quirk_spurious_8042 for MECHREVO Wujie 14XA (GX4HRXL) (git-fixes). * platform/x86/amd: pmc: Require at least 2.5 seconds between HW sleep cycles (stable-fixes). * platform/x86/intel-uncore-freq: Fix missing uncore sysfs during CPU hotplug (git-fixes). * platform/x86: asus-wmi: Fix wlan_ctrl_by_user detection (git-fixes). * pm: cpupower: bench: Prevent NULL dereference on malloc failure (stable- fixes). * powercap: intel_rapl: Introduce APIs for PMU support (bsc#1241010). * powercap: intel_rapl_tpmi: Enable PMU support (bsc#1241010). * powerpc/boot: Check for ld-option support (bsc#1215199). * powerpc/boot: Fix dash warning (bsc#1215199). * powerpc: Do not use --- in kernel logs (git-fixes). * pwm: fsl-ftm: Handle clk_get_rate() returning 0 (git-fixes). * pwm: mediatek: Prevent divide-by-zero in pwm_mediatek_config() (git-fixes). * pwm: rcar: Improve registercalculation (git-fixes). * rpm/check-for-config-changes: Add GCC_ASM_FLAG_OUTPUT_BROKEN * rpm/kernel-binary.spec.in: Also order against update-bootloader (boo#1228659, boo#1240785, boo#1241038). * rpm/package-descriptions: Add rt and rt_debug descriptions * rtc: pcf85063: do a SW reset if POR failed (stable-fixes). * scsi: core: Use GFP_NOIO to avoid circular locking dependency (git-fixes). * scsi: hisi_sas: Enable force phy when SATA disk directly connected (git- fixes). * scsi: iscsi: Fix missing scsi_host_put() in error path (git-fixes). * scsi: lpfc: Restore clearing of NLP_UNREG_INP in ndlp-> nlp_flag (git-fixes). * scsi: mpi3mr: Fix locking in an error path (git-fixes). * scsi: mpt3sas: Fix a locking bug in an error path (git-fixes). * scsi: mpt3sas: Reduce log level of ignore_delay_remove message to KERN_INFO (git-fixes). * scsi: scsi_debug: Remove a reference to in_use_bm (git-fixes). * sctp: Fix undefined behavior in left shift operation (git-fixes). * sctp: add mutual exclusion in proc_sctp_do_udp_port() (git-fixes). * sctp: detect and prevent references to a freed transport in sendmsg (git- fixes). * sctp: ensure sk_state is set to CLOSED if hashing fails in sctp_listen_start (git-fixes). * sctp: fix association labeling in the duplicate COOKIE-ECHO case (git- fixes). * sctp: fix busy polling (git-fixes). * sctp: prefer struct_size over open coded arithmetic (git-fixes). * sctp: support MSG_ERRQUEUE flag in recvmsg() (git-fixes). * selftests/bpf: Add a few tests to cover (git-fixes). * selftests/bpf: extend changes_pkt_data with cases w/o subprograms (bsc#1241590). * selftests/bpf: freplace tests for tracking of changes_packet_data (bsc#1241590). * selftests/bpf: test for changing packet data from global functions (bsc#1241590). * selftests/bpf: validate that tail call invalidates packet pointers (bsc#1241590). * selftests/futex: futex_waitv wouldblock test should fail (git-fixes). * selftests/mm: generate atemporary mountpoint for cgroup filesystem (git- fixes). * serial: msm: Configure correct working mode before starting earlycon (git- fixes). * serial: sifive: lock port in startup()/shutdown() callbacks (git-fixes). * smb: client: fix folio leaks and perf improvements (bsc#1239997, bsc1241265). * sound/virtio: Fix cancel_sync warnings on uninitialized work_structs (stable-fixes). * spi: tegra114: Do not fail set_cs_timing when delays are zero (git-fixes). * spi: tegra210-quad: add rate limiting and simplify timeout error message (stable-fixes). * spi: tegra210-quad: use WARN_ON_ONCE instead of WARN_ON for timeouts (stable-fixes). * splice: remove duplicate noinline from pipe_clear_nowait (bsc#1242328). * staging: axis-fifo: Correct handling of tx_fifo_depth for size validation (git-fixes). * staging: axis-fifo: Remove hardware resets for user errors (git-fixes). * staging: iio: adc: ad7816: Correct conditional logic for store mode (git- fixes). * string: Add load_unaligned_zeropad() code path to sized_strscpy() (git- fixes). * tcp: fix mptcp DSS corruption due to large pmtu xmit (git-fixes). * thunderbolt: Scan retimers after device router has been enumerated (stable- fixes). * tools/hv: update route parsing in kvp daemon (git-fixes). * tools/power turbostat: Increase CPU_SUBSET_MAXCPUS to 8192 (bsc#1241175). * tools/power turbostat: report CoreThr per measurement interval (git-fixes). * tty: n_tty: use uint for space returned by tty_write_room() (git-fixes). * ublk: set_params: properly check if parameters can be applied (git-fixes). * udf: Fix inode_getblk() return value (bsc#1242313). * udf: Skip parent dir link count update if corrupted (bsc#1242315). * udf: Verify inode link counts before performing rename (bsc#1242314). * usb: cdns3: Fix deadlock when using NCM gadget (git-fixes). * usb: cdnsp: fix L1 resume issue for RTL_REVISION_NEW_LPM version (git- fixes). * usb: chipidea: ci_hdrc_imx: fix call balance ofregulator routines (git- fixes). * usb: chipidea: ci_hdrc_imx: implement usb_phy_init() error handling (git- fixes). * usb: dwc3: gadget: Avoid using reserved endpoints on Intel Merrifield (stable-fixes). * usb: dwc3: gadget: Refactor loop to avoid NULL endpoints (stable-fixes). * usb: dwc3: gadget: check that event count does not exceed event buffer length (git-fixes). * usb: dwc3: xilinx: Prevent spike in reset signal (git-fixes). * usb: gadget: Use get_status callback to set remote wakeup capability (git- fixes). * usb: gadget: aspeed: Add NULL pointer check in ast_vhub_init_dev() (stable- fixes). * usb: gadget: f_ecm: Add get_status callback (git-fixes). * usb: gadget: tegra-xudc: ACK ST_RC after clearing CTRL_RUN (git-fixes). * usb: host: max3421-hcd: Add missing spi_device_id table (stable-fixes). * usb: host: tegra: Prevent host controller crash when OTG port is used (git- fixes). * usb: host: xhci-plat: mvebu: use -> quirks instead of -> init_quirk() func (stable-fixes). * usb: quirks: Add delay init quirk for SanDisk 3.2Gen1 Flash Drive (stable- fixes). * usb: quirks: add DELAY_INIT quirk for Silicon Motion Flash Drive (stable- fixes). * usb: typec: tcpm: delay SNK_TRY_WAIT_DEBOUNCE to SRC_TRYWAIT transition (git-fixes). * usb: typec: ucsi: displayport: Fix NULL pointer access (git-fixes). * usb: uhci-platform: Make the clock really optional (git-fixes). * usb: usbtmc: Fix erroneous generic_read ioctl return (git-fixes). * usb: usbtmc: Fix erroneous get_stb ioctl error returns (git-fixes). * usb: usbtmc: Fix erroneous wait_srq ioctl return (git-fixes). * vdpa/mlx5: Fix oversized null mkey longer than 32bit (git-fixes). * vfs: do not mod negative dentry count when on shrinker list (bsc#1242534). * virtchnl: make proto and filter action count unsigned (git-fixes). * vmxnet3: Fix tx queue race condition with XDP (bsc#1241394). * vmxnet3: unregister xdp rxq info in the reset path (bsc#1241394). * wifi: at76c50x:fix use after free access in at76_disconnect (git-fixes). * wifi: ath12k: Fix invalid data access in ath12k_dp_rx_h_undecap_nwifi (stable-fixes). * wifi: ath12k: Fix invalid entry fetch in ath12k_dp_mon_srng_process (stable- fixes). * wifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage() (git-fixes). * wifi: cfg80211: fix out-of-bounds access during multi-link element defragmentation (git-fixes). * wifi: mac80211: Purge vif txq in ieee80211_do_stop() (git-fixes). * wifi: mac80211: Update skb's control block key in ieee80211_tx_dequeue() (git-fixes). * wifi: mt76: mt76x2u: add TP-Link TL-WDN6200 ID to device table (stable- fixes). * wifi: plfxlc: Remove erroneous assert in plfxlc_mac_release (git-fixes). * wifi: wl1251: fix memory leak in wl1251_tx_work (git-fixes). * x86/bhi: Do not set BHI_DIS_S in 32-bit mode (bsc#1242778). * x86/bpf: Add IBHF call at end of classic BPF (bsc#1242778). * x86/bpf: Call branch history clearing sequence on exit (bsc#1242778). * x86/bugs: Add RSB mitigation document (git-fixes). * x86/bugs: Do not fill RSB on VMEXIT with eIBRS+retpoline (git-fixes). * x86/bugs: Do not fill RSB on context switch with eIBRS (git-fixes). * x86/bugs: Fix RSB clearing in indirect_branch_prediction_barrier() (git- fixes). * x86/bugs: Rename entry_ibpb() to write_ibpb() (git-fixes). * x86/bugs: Use SBPB in write_ibpb() if applicable (git-fixes). * x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment (git-fixes). * x86/entry: Fix ORC unwinder for PUSH_REGS with save_ret=1 (git-fixes). * x86/hyperv: Fix check of return value from snp_set_vmsa() (git-fixes). * x86/microcode/AMD: Fix a -Wsometimes-uninitialized clang false positive (git-fixes). * x86/microcode/AMD: Flush patch buffer mapping after application (git-fixes). * x86/microcode/AMD: Pay attention to the stepping dynamically (git-fixes). * x86/microcode/AMD: Split load_microcode_amd() (git-fixes). *x86/microcode/AMD: Use the family,model,stepping encoded in the patch ID (git-fixes). * x86/microcode/intel: Set new revision only after a successful update (git- fixes). * x86/microcode: Remove the driver announcement and version (git-fixes). * x86/microcode: Rework early revisions reporting (git-fixes). * x86/paravirt: Move halt paravirt calls under CONFIG_PARAVIRT (git-fixes). * x86/tdx: Emit warning if IRQs are enabled during HLT #VE handling (git- fixes). * x86/tdx: Fix arch_safe_halt() execution for TDX VMs (git-fixes). * x86/uaccess: Improve performance by aligning writes to 8 bytes in copy_user_generic(), on non-FSRM/ERMS CPUs (git-fixes). * xfs: flush inodegc before swapon (git-fixes). * xhci: Clean up stale comment on ERST_SIZE macro (stable-fixes). * zap_pid_ns_processes: clear TIF_NOTIFY_SIGNAL along with TIF_SIGPENDING (bsc#1241167). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-22=1 * SUSE Linux Micro Extras 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-22=1 ## Package List: * SUSE Linux Micro 6.0 (noarch) * kernel-devel-6.4.0-29.1 * kernel-macros-6.4.0-29.1 * kernel-source-6.4.0-29.1 * SUSE Linux Micro 6.0 (aarch64 nosrc s390x x86_64) * kernel-default-6.4.0-29.1 * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * kernel-default-debugsource-6.4.0-29.1 * kernel-default-debuginfo-6.4.0-29.1 * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-default-livepatch-6.4.0-29.1 * kernel-livepatch-6_4_0-29-default-1-1.2 * kernel-livepatch-MICRO-6-0_Update_7-debugsource-1-1.2 * kernel-livepatch-6_4_0-29-default-debuginfo-1-1.2 * SUSE Linux Micro 6.0 (nosrc x86_64) *kernel-kvmsmall-6.4.0-29.1 * SUSE Linux Micro 6.0 (x86_64) * kernel-kvmsmall-debugsource-6.4.0-29.1 * kernel-kvmsmall-debuginfo-6.4.0-29.1 * SUSE Linux Micro 6.0 (aarch64 x86_64) * kernel-default-base-6.4.0-29.1.21.7 * SUSE Linux Micro Extras 6.0 (nosrc) * kernel-default-6.4.0-29.1 * kernel-64kb-6.4.0-29.1 * SUSE Linux Micro Extras 6.0 (aarch64) * kernel-64kb-devel-6.4.0-29.1 * kernel-64kb-debugsource-6.4.0-29.1 * SUSE Linux Micro Extras 6.0 (aarch64 s390x x86_64) * kernel-obs-build-6.4.0-29.1 * kernel-syms-6.4.0-29.1 * kernel-default-debugsource-6.4.0-29.1 * kernel-obs-build-debugsource-6.4.0-29.1 * kernel-default-devel-6.4.0-29.1 * SUSE Linux Micro Extras 6.0 (x86_64) * kernel-default-devel-debuginfo-6.4.0-29.1 ## References: * https://www.suse.com/security/cve/CVE-2023-53034.html * https://www.suse.com/security/cve/CVE-2024-27018.html * https://www.suse.com/security/cve/CVE-2024-27415.html * https://www.suse.com/security/cve/CVE-2024-28956.html * https://www.suse.com/security/cve/CVE-2024-35840.html * https://www.suse.com/security/cve/CVE-2024-46763.html * https://www.suse.com/security/cve/CVE-2024-46865.html * https://www.suse.com/security/cve/CVE-2024-50083.html * https://www.suse.com/security/cve/CVE-2024-50162.html * https://www.suse.com/security/cve/CVE-2024-50163.html * https://www.suse.com/security/cve/CVE-2024-56641.html * https://www.suse.com/security/cve/CVE-2024-56702.html * https://www.suse.com/security/cve/CVE-2024-57924.html * https://www.suse.com/security/cve/CVE-2024-57998.html * https://www.suse.com/security/cve/CVE-2024-58001.html * https://www.suse.com/security/cve/CVE-2024-58068.html * https://www.suse.com/security/cve/CVE-2024-58070.html * https://www.suse.com/security/cve/CVE-2024-58088.html * https://www.suse.com/security/cve/CVE-2024-58093.html * https://www.suse.com/security/cve/CVE-2024-58094.html * https://www.suse.com/security/cve/CVE-2024-58095.html *https://www.suse.com/security/cve/CVE-2024-58096.html * https://www.suse.com/security/cve/CVE-2024-58097.html * https://www.suse.com/security/cve/CVE-2025-21683.html * https://www.suse.com/security/cve/CVE-2025-21696.html * https://www.suse.com/security/cve/CVE-2025-21707.html * https://www.suse.com/security/cve/CVE-2025-21758.html * https://www.suse.com/security/cve/CVE-2025-21768.html * https://www.suse.com/security/cve/CVE-2025-21792.html * https://www.suse.com/security/cve/CVE-2025-21808.html * https://www.suse.com/security/cve/CVE-2025-21812.html * https://www.suse.com/security/cve/CVE-2025-21833.html * https://www.suse.com/security/cve/CVE-2025-21852.html * https://www.suse.com/security/cve/CVE-2025-21853.html * https://www.suse.com/security/cve/CVE-2025-21854.html * https://www.suse.com/security/cve/CVE-2025-21867.html * https://www.suse.com/security/cve/CVE-2025-21904.html * https://www.suse.com/security/cve/CVE-2025-21925.html * https://www.suse.com/security/cve/CVE-2025-21926.html * https://www.suse.com/security/cve/CVE-2025-21931.html * https://www.suse.com/security/cve/CVE-2025-21962.html * https://www.suse.com/security/cve/CVE-2025-21963.html * https://www.suse.com/security/cve/CVE-2025-21964.html * https://www.suse.com/security/cve/CVE-2025-21980.html * https://www.suse.com/security/cve/CVE-2025-21985.html * https://www.suse.com/security/cve/CVE-2025-21999.html * https://www.suse.com/security/cve/CVE-2025-22004.html * https://www.suse.com/security/cve/CVE-2025-22015.html * https://www.suse.com/security/cve/CVE-2025-22016.html * https://www.suse.com/security/cve/CVE-2025-22017.html * https://www.suse.com/security/cve/CVE-2025-22018.html * https://www.suse.com/security/cve/CVE-2025-22020.html * https://www.suse.com/security/cve/CVE-2025-22025.html * https://www.suse.com/security/cve/CVE-2025-22027.html * https://www.suse.com/security/cve/CVE-2025-22029.html * https://www.suse.com/security/cve/CVE-2025-22033.html *https://www.suse.com/security/cve/CVE-2025-22036.html * https://www.suse.com/security/cve/CVE-2025-22044.html * https://www.suse.com/security/cve/CVE-2025-22045.html * https://www.suse.com/security/cve/CVE-2025-22050.html * https://www.suse.com/security/cve/CVE-2025-22053.html * https://www.suse.com/security/cve/CVE-2025-22055.html * https://www.suse.com/security/cve/CVE-2025-22058.html * https://www.suse.com/security/cve/CVE-2025-22060.html * https://www.suse.com/security/cve/CVE-2025-22062.html * https://www.suse.com/security/cve/CVE-2025-22064.html * https://www.suse.com/security/cve/CVE-2025-22065.html * https://www.suse.com/security/cve/CVE-2025-22075.html * https://www.suse.com/security/cve/CVE-2025-22080.html * https://www.suse.com/security/cve/CVE-2025-22086.html * https://www.suse.com/security/cve/CVE-2025-22088.html * https://www.suse.com/security/cve/CVE-2025-22090.html * https://www.suse.com/security/cve/CVE-2025-22093.html * https://www.suse.com/security/cve/CVE-2025-22097.html * https://www.suse.com/security/cve/CVE-2025-22102.html * https://www.suse.com/security/cve/CVE-2025-22104.html * https://www.suse.com/security/cve/CVE-2025-22105.html * https://www.suse.com/security/cve/CVE-2025-22106.html * https://www.suse.com/security/cve/CVE-2025-22107.html * https://www.suse.com/security/cve/CVE-2025-22108.html * https://www.suse.com/security/cve/CVE-2025-22109.html * https://www.suse.com/security/cve/CVE-2025-22115.html * https://www.suse.com/security/cve/CVE-2025-22116.html * https://www.suse.com/security/cve/CVE-2025-22121.html * https://www.suse.com/security/cve/CVE-2025-22128.html * https://www.suse.com/security/cve/CVE-2025-23129.html * https://www.suse.com/security/cve/CVE-2025-23131.html * https://www.suse.com/security/cve/CVE-2025-23133.html * https://www.suse.com/security/cve/CVE-2025-23136.html * https://www.suse.com/security/cve/CVE-2025-23138.html * https://www.suse.com/security/cve/CVE-2025-23145.html *https://www.suse.com/security/cve/CVE-2025-37785.html * https://www.suse.com/security/cve/CVE-2025-37798.html * https://www.suse.com/security/cve/CVE-2025-37799.html * https://www.suse.com/security/cve/CVE-2025-37860.html * https://www.suse.com/security/cve/CVE-2025-39728.html * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1223809 * https://bugzilla.suse.com/show_bug.cgi?id=1224013 * https://bugzilla.suse.com/show_bug.cgi?id=1224597 * https://bugzilla.suse.com/show_bug.cgi?id=1224757 * https://bugzilla.suse.com/show_bug.cgi?id=1228659 * https://bugzilla.suse.com/show_bug.cgi?id=1230764 * https://bugzilla.suse.com/show_bug.cgi?id=1231103 * https://bugzilla.suse.com/show_bug.cgi?id=1232493 * https://bugzilla.suse.com/show_bug.cgi?id=1233075 * https://bugzilla.suse.com/show_bug.cgi?id=1233098 * https://bugzilla.suse.com/show_bug.cgi?id=1235501 * https://bugzilla.suse.com/show_bug.cgi?id=1235526 * https://bugzilla.suse.com/show_bug.cgi?id=1236086 * https://bugzilla.suse.com/show_bug.cgi?id=1236704 * https://bugzilla.suse.com/show_bug.cgi?id=1237111 * https://bugzilla.suse.com/show_bug.cgi?id=1238212 * https://bugzilla.suse.com/show_bug.cgi?id=1238471 * https://bugzilla.suse.com/show_bug.cgi?id=1238527 * https://bugzilla.suse.com/show_bug.cgi?id=1238714 * https://bugzilla.suse.com/show_bug.cgi?id=1238737 * https://bugzilla.suse.com/show_bug.cgi?id=1238742 * https://bugzilla.suse.com/show_bug.cgi?id=1238745 * https://bugzilla.suse.com/show_bug.cgi?id=1238862 * https://bugzilla.suse.com/show_bug.cgi?id=1238961 * https://bugzilla.suse.com/show_bug.cgi?id=1238983 * https://bugzilla.suse.com/show_bug.cgi?id=1239079 * https://bugzilla.suse.com/show_bug.cgi?id=1239108 * https://bugzilla.suse.com/show_bug.cgi?id=1239470 * https://bugzilla.suse.com/show_bug.cgi?id=1239476 * https://bugzilla.suse.com/show_bug.cgi?id=1239487 * https://bugzilla.suse.com/show_bug.cgi?id=1239510 *https://bugzilla.suse.com/show_bug.cgi?id=1239997 * https://bugzilla.suse.com/show_bug.cgi?id=1240181 * https://bugzilla.suse.com/show_bug.cgi?id=1240557 * https://bugzilla.suse.com/show_bug.cgi?id=1240576 * https://bugzilla.suse.com/show_bug.cgi?id=1240655 * https://bugzilla.suse.com/show_bug.cgi?id=1240709 * https://bugzilla.suse.com/show_bug.cgi?id=1240712 * https://bugzilla.suse.com/show_bug.cgi?id=1240713 * https://bugzilla.suse.com/show_bug.cgi?id=1240717 * https://bugzilla.suse.com/show_bug.cgi?id=1240740 * https://bugzilla.suse.com/show_bug.cgi?id=1240785 * https://bugzilla.suse.com/show_bug.cgi?id=1240802 * https://bugzilla.suse.com/show_bug.cgi?id=1240809 * https://bugzilla.suse.com/show_bug.cgi?id=1240811 * https://bugzilla.suse.com/show_bug.cgi?id=1240835 * https://bugzilla.suse.com/show_bug.cgi?id=1240934 * https://bugzilla.suse.com/show_bug.cgi?id=1240936 * https://bugzilla.suse.com/show_bug.cgi?id=1240944 * https://bugzilla.suse.com/show_bug.cgi?id=1241010 * https://bugzilla.suse.com/show_bug.cgi?id=1241038 * https://bugzilla.suse.com/show_bug.cgi?id=1241051 * https://bugzilla.suse.com/show_bug.cgi?id=1241123 * https://bugzilla.suse.com/show_bug.cgi?id=1241151 * https://bugzilla.suse.com/show_bug.cgi?id=1241167 * https://bugzilla.suse.com/show_bug.cgi?id=1241175 * https://bugzilla.suse.com/show_bug.cgi?id=1241204 * https://bugzilla.suse.com/show_bug.cgi?id=1241250 * https://bugzilla.suse.com/show_bug.cgi?id=1241265 * https://bugzilla.suse.com/show_bug.cgi?id=1241266 * https://bugzilla.suse.com/show_bug.cgi?id=1241280 * https://bugzilla.suse.com/show_bug.cgi?id=1241332 * https://bugzilla.suse.com/show_bug.cgi?id=1241333 * https://bugzilla.suse.com/show_bug.cgi?id=1241341 * https://bugzilla.suse.com/show_bug.cgi?id=1241343 * https://bugzilla.suse.com/show_bug.cgi?id=1241344 * https://bugzilla.suse.com/show_bug.cgi?id=1241347 * https://bugzilla.suse.com/show_bug.cgi?id=1241357 *https://bugzilla.suse.com/show_bug.cgi?id=1241361 * https://bugzilla.suse.com/show_bug.cgi?id=1241369 * https://bugzilla.suse.com/show_bug.cgi?id=1241371 * https://bugzilla.suse.com/show_bug.cgi?id=1241373 * https://bugzilla.suse.com/show_bug.cgi?id=1241378 * https://bugzilla.suse.com/show_bug.cgi?id=1241394 * https://bugzilla.suse.com/show_bug.cgi?id=1241402 * https://bugzilla.suse.com/show_bug.cgi?id=1241412 * https://bugzilla.suse.com/show_bug.cgi?id=1241413 * https://bugzilla.suse.com/show_bug.cgi?id=1241416 * https://bugzilla.suse.com/show_bug.cgi?id=1241424 * https://bugzilla.suse.com/show_bug.cgi?id=1241426 * https://bugzilla.suse.com/show_bug.cgi?id=1241433 * https://bugzilla.suse.com/show_bug.cgi?id=1241436 * https://bugzilla.suse.com/show_bug.cgi?id=1241441 * https://bugzilla.suse.com/show_bug.cgi?id=1241442 * https://bugzilla.suse.com/show_bug.cgi?id=1241443 * https://bugzilla.suse.com/show_bug.cgi?id=1241451 * https://bugzilla.suse.com/show_bug.cgi?id=1241452 * https://bugzilla.suse.com/show_bug.cgi?id=1241456 * https://bugzilla.suse.com/show_bug.cgi?id=1241458 * https://bugzilla.suse.com/show_bug.cgi?id=1241459 * https://bugzilla.suse.com/show_bug.cgi?id=1241526 * https://bugzilla.suse.com/show_bug.cgi?id=1241528 * https://bugzilla.suse.com/show_bug.cgi?id=1241537 * https://bugzilla.suse.com/show_bug.cgi?id=1241541 * https://bugzilla.suse.com/show_bug.cgi?id=1241545 * https://bugzilla.suse.com/show_bug.cgi?id=1241547 * https://bugzilla.suse.com/show_bug.cgi?id=1241548 * https://bugzilla.suse.com/show_bug.cgi?id=1241550 * https://bugzilla.suse.com/show_bug.cgi?id=1241573 * https://bugzilla.suse.com/show_bug.cgi?id=1241574 * https://bugzilla.suse.com/show_bug.cgi?id=1241575 * https://bugzilla.suse.com/show_bug.cgi?id=1241578 * https://bugzilla.suse.com/show_bug.cgi?id=1241590 * https://bugzilla.suse.com/show_bug.cgi?id=1241593 * https://bugzilla.suse.com/show_bug.cgi?id=1241598 *https://bugzilla.suse.com/show_bug.cgi?id=1241599 * https://bugzilla.suse.com/show_bug.cgi?id=1241601 * https://bugzilla.suse.com/show_bug.cgi?id=1241626 * https://bugzilla.suse.com/show_bug.cgi?id=1241640 * https://bugzilla.suse.com/show_bug.cgi?id=1241648 * https://bugzilla.suse.com/show_bug.cgi?id=1242006 * https://bugzilla.suse.com/show_bug.cgi?id=1242044 * https://bugzilla.suse.com/show_bug.cgi?id=1242172 * https://bugzilla.suse.com/show_bug.cgi?id=1242283 * https://bugzilla.suse.com/show_bug.cgi?id=1242307 * https://bugzilla.suse.com/show_bug.cgi?id=1242313 * https://bugzilla.suse.com/show_bug.cgi?id=1242314 * https://bugzilla.suse.com/show_bug.cgi?id=1242315 * https://bugzilla.suse.com/show_bug.cgi?id=1242321 * https://bugzilla.suse.com/show_bug.cgi?id=1242326 * https://bugzilla.suse.com/show_bug.cgi?id=1242327 * https://bugzilla.suse.com/show_bug.cgi?id=1242328 * https://bugzilla.suse.com/show_bug.cgi?id=1242332 * https://bugzilla.suse.com/show_bug.cgi?id=1242333 * https://bugzilla.suse.com/show_bug.cgi?id=1242335 * https://bugzilla.suse.com/show_bug.cgi?id=1242336 * https://bugzilla.suse.com/show_bug.cgi?id=1242342 * https://bugzilla.suse.com/show_bug.cgi?id=1242343 * https://bugzilla.suse.com/show_bug.cgi?id=1242344 * https://bugzilla.suse.com/show_bug.cgi?id=1242345 * https://bugzilla.suse.com/show_bug.cgi?id=1242346 * https://bugzilla.suse.com/show_bug.cgi?id=1242347 * https://bugzilla.suse.com/show_bug.cgi?id=1242348 * https://bugzilla.suse.com/show_bug.cgi?id=1242414 * https://bugzilla.suse.com/show_bug.cgi?id=1242526 * https://bugzilla.suse.com/show_bug.cgi?id=1242528 * https://bugzilla.suse.com/show_bug.cgi?id=1242534 * https://bugzilla.suse.com/show_bug.cgi?id=1242535 * https://bugzilla.suse.com/show_bug.cgi?id=1242536 * https://bugzilla.suse.com/show_bug.cgi?id=1242537 * https://bugzilla.suse.com/show_bug.cgi?id=1242538 * https://bugzilla.suse.com/show_bug.cgi?id=1242539 *https://bugzilla.suse.com/show_bug.cgi?id=1242540 * https://bugzilla.suse.com/show_bug.cgi?id=1242546 * https://bugzilla.suse.com/show_bug.cgi?id=1242556 * https://bugzilla.suse.com/show_bug.cgi?id=1242596 * https://bugzilla.suse.com/show_bug.cgi?id=1242710 * https://bugzilla.suse.com/show_bug.cgi?id=1242778 * https://bugzilla.suse.com/show_bug.cgi?id=1242831 * https://bugzilla.suse.com/show_bug.cgi?id=1242985 . An essential security patch for SUSE Linux Micro addresses 96 vulnerabilities in the Linux Kernel. Prompt intervention is required.. SUSE Linux Micro Kernel Update, Important Kernel Security, Kernel Bug Fixes, Linux Kernel Security Patches. . Severity: Important. LinuxSecurity.com Team
May 29, 2025
•Important
SuSE
100
security advisorypatchimportantSUSE: 2024:2901-1 Important Security Update for Linux Kernel
* bsc#1065729 * bsc#1088701 * bsc#1149446 * bsc#1179610 * bsc#1186463 . # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2901-1 Rating: important References: * bsc#1065729 * bsc#1088701 * bsc#1149446 * bsc#1179610 * bsc#1186463 * bsc#1196018 * bsc#1202346 * bsc#1215420 * bsc#1216834 * bsc#1220138 * bsc#1220833 * bsc#1220942 * bsc#1221045 * bsc#1221614 * bsc#1221616 * bsc#1221618 * bsc#1221656 * bsc#1221659 * bsc#1222005 * bsc#1222060 * bsc#1222317 * bsc#1222326 * bsc#1222372 * bsc#1222625 * bsc#1222776 * bsc#1222792 * bsc#1222824 * bsc#1222829 * bsc#1222866 * bsc#1223012 * bsc#1223021 * bsc#1223188 * bsc#1223778 * bsc#1223813 * bsc#1223815 * bsc#1224500 * bsc#1224512 * bsc#1224545 * bsc#1224557 * bsc#1224571 * bsc#1224576 * bsc#1224587 * bsc#1224622 * bsc#1224627 * bsc#1224637 * bsc#1224641 * bsc#1224647 * bsc#1224663 * bsc#1224683 * bsc#1224686 * bsc#1224699 * bsc#1224700 * bsc#1224743 * bsc#1224965 * bsc#1224975 * bsc#1225003 * bsc#1225214 * bsc#1225224 * bsc#1225229 * bsc#1225238 * bsc#1225241 * bsc#1225326 * bsc#1225328 * bsc#1225346 * bsc#1225357 * bsc#1225361 * bsc#1225396 * bsc#1225427 * bsc#1225431 * bsc#1225455 * bsc#1225478 * bsc#1225505 * bsc#1225530 * bsc#1225532 * bsc#1225569 * bsc#1225593 * bsc#1225711 * bsc#1225719 * bsc#1225767 * bsc#1225820 * bsc#1225835 * bsc#1225838 * bsc#1225898 * bsc#1226550 * bsc#1226553 * bsc#1226555 * bsc#1226559 * bsc#1226568 * bsc#1226571 * bsc#1226645 * bsc#1226757 * bsc#1226783 * bsc#1226786 * bsc#1226834 * bsc#1226861 * bsc#1226908 * bsc#1226994 * bsc#1227191 * bsc#1227213 * bsc#1227407 * bsc#1227435 * bsc#1227487 * bsc#1227573 * bsc#1227618 * bsc#1227626 * bsc#1227716 * bsc#1227725 * bsc#1227729 * bsc#1227730 * bsc#1227733 * bsc#1227750 * bsc#1227754 * bsc#1227762 * bsc#1227770 * bsc#1227771 * bsc#1227772 *bsc#1227774 * bsc#1227786 * bsc#1227790 * bsc#1227806 * bsc#1227824 * bsc#1227828 * bsc#1227830 * bsc#1227836 * bsc#1227849 * bsc#1227865 * bsc#1227866 * bsc#1227884 * bsc#1227886 * bsc#1227891 * bsc#1227913 * bsc#1227924 * bsc#1227928 * bsc#1227929 * bsc#1227936 * bsc#1227957 * bsc#1227968 * bsc#1227969 * bsc#1227975 * bsc#1227985 * bsc#1227989 * bsc#1228003 * bsc#1228005 * bsc#1228008 * bsc#1228013 * bsc#1228025 * bsc#1228030 * bsc#1228037 * bsc#1228045 * bsc#1228054 * bsc#1228055 * bsc#1228063 * bsc#1228071 * bsc#1228235 * bsc#1228237 * bsc#1228327 * bsc#1228328 * bsc#1228408 * bsc#1228409 * bsc#1228410 * bsc#1228470 * bsc#1228530 * bsc#1228561 * bsc#1228565 * bsc#1228567 * bsc#1228580 * bsc#1228581 * bsc#1228584 * bsc#1228588 * bsc#1228599 * bsc#1228617 * bsc#1228625 * bsc#1228626 * bsc#1228633 * bsc#1228640 * bsc#1228649 * bsc#1228655 * bsc#1228658 * bsc#1228662 * bsc#1228680 * bsc#1228705 * bsc#1228723 * bsc#1228726 * bsc#1228743 * bsc#1228850 Cross-References: * CVE-2020-26558 * CVE-2021-0129 * CVE-2021-47145 * CVE-2021-47191 * CVE-2021-47194 * CVE-2021-47197 * CVE-2021-47201 * CVE-2021-47219 * CVE-2021-47275 * CVE-2021-47295 * CVE-2021-47388 * CVE-2021-47395 * CVE-2021-47399 * CVE-2021-47403 * CVE-2021-47405 * CVE-2021-47438 * CVE-2021-47441 * CVE-2021-47468 * CVE-2021-47498 * CVE-2021-47501 * CVE-2021-47516 * CVE-2021-47520 * CVE-2021-47542 * CVE-2021-47547 * CVE-2021-47559 * CVE-2021-47580 * CVE-2021-47582 * CVE-2021-47588 * CVE-2021-47597 * CVE-2021-47599 * CVE-2021-47606 * CVE-2021-47619 * CVE-2022-20368 * CVE-2022-28748 * CVE-2022-2964 * CVE-2022-48775 * CVE-2022-48792 * CVE-2022-48794 * CVE-2022-48804 * CVE-2022-48805 * CVE-2022-48810 * CVE-2022-48811 * CVE-2022-48823 * CVE-2022-48826 * CVE-2022-48827 * CVE-2022-48828 * CVE-2022-48829 * CVE-2022-48836 *CVE-2022-48839 * CVE-2022-48850 * CVE-2022-48855 * CVE-2022-48857 * CVE-2022-48860 * CVE-2022-48863 * CVE-2023-4244 * CVE-2023-52435 * CVE-2023-52507 * CVE-2023-52594 * CVE-2023-52612 * CVE-2023-52615 * CVE-2023-52619 * CVE-2023-52623 * CVE-2023-52669 * CVE-2023-52683 * CVE-2023-52693 * CVE-2023-52743 * CVE-2023-52753 * CVE-2023-52817 * CVE-2023-52818 * CVE-2023-52819 * CVE-2023-52885 * CVE-2024-26615 * CVE-2024-26635 * CVE-2024-26636 * CVE-2024-26659 * CVE-2024-26663 * CVE-2024-26735 * CVE-2024-26830 * CVE-2024-26863 * CVE-2024-26880 * CVE-2024-26920 * CVE-2024-26924 * CVE-2024-27019 * CVE-2024-27020 * CVE-2024-27025 * CVE-2024-27437 * CVE-2024-35805 * CVE-2024-35806 * CVE-2024-35819 * CVE-2024-35828 * CVE-2024-35837 * CVE-2024-35887 * CVE-2024-35893 * CVE-2024-35934 * CVE-2024-35947 * CVE-2024-35949 * CVE-2024-35966 * CVE-2024-35967 * CVE-2024-35978 * CVE-2024-35995 * CVE-2024-36004 * CVE-2024-36014 * CVE-2024-36288 * CVE-2024-36592 * CVE-2024-36901 * CVE-2024-36902 * CVE-2024-36919 * CVE-2024-36924 * CVE-2024-36939 * CVE-2024-36941 * CVE-2024-36952 * CVE-2024-38558 * CVE-2024-38560 * CVE-2024-38598 * CVE-2024-38619 * CVE-2024-38630 * CVE-2024-39301 * CVE-2024-39475 * CVE-2024-39487 * CVE-2024-39488 * CVE-2024-39490 * CVE-2024-39494 * CVE-2024-39499 * CVE-2024-39501 * CVE-2024-39506 * CVE-2024-39507 * CVE-2024-39509 * CVE-2024-40901 * CVE-2024-40904 * CVE-2024-40912 * CVE-2024-40923 * CVE-2024-40929 * CVE-2024-40932 * CVE-2024-40937 * CVE-2024-40941 * CVE-2024-40942 * CVE-2024-40943 * CVE-2024-40953 * CVE-2024-40959 * CVE-2024-40966 * CVE-2024-40967 * CVE-2024-40978 * CVE-2024-40982 * CVE-2024-40987 * CVE-2024-40988 * CVE-2024-40990 * CVE-2024-40995 * CVE-2024-40998 * CVE-2024-40999 * CVE-2024-41014 * CVE-2024-41015 * CVE-2024-41016 * CVE-2024-41044 * CVE-2024-41048 * CVE-2024-41059 * CVE-2024-41060 * CVE-2024-41063 * CVE-2024-41064 * CVE-2024-41066 * CVE-2024-41070 * CVE-2024-41071 * CVE-2024-41072 * CVE-2024-41076 * CVE-2024-41078 * CVE-2024-41081 * CVE-2024-41089 * CVE-2024-41090 * CVE-2024-41091 * CVE-2024-41095 * CVE-2024-42070 * CVE-2024-42093 * CVE-2024-42096 * CVE-2024-42119 * CVE-2024-42120 * CVE-2024-42124 * CVE-2024-42145 * CVE-2024-42223 * CVE-2024-42224 CVSS scores: * CVE-2020-26558 ( SUSE ): 4.2 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2020-26558 ( NVD ): 4.2 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2021-0129 ( SUSE ): 6.4 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2021-0129 ( NVD ): 5.7 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47145 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47191 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47194 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47194 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47197 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47201 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47219 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47275 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47295 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47388 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47395 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47399 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47403 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47438 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47468 ( SUSE ): 4.7CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47498 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47501 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47516 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47516 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47520 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47520 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47542 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47542 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47547 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47559 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47559 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47580 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2021-47582 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47588 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47597 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47599 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47606 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-20368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-20368 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-28748 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2022-2964 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-2964 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48775 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( NVD ): 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48794 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48804 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48805 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48810 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48811 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48823 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48827 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48829 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48836 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48850 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48850 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48855 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48863 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2022-48863 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-4244 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-4244 ( NVD ): 7.0CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52435 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52507 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-52594 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52612 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52615 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52623 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52669 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52683 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52693 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52743 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52753 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52753 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52817 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52817 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52818 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52819 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52885 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26635 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26636 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26659 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26735 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26830 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26880 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26920 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26924 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-27020 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27020 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27025 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27437 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35805 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35819 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35887 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35934 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35947 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35949 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35966 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35967 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35978 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35978 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35995 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36004 ( SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36924 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36939 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36952 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38558 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-38560 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38598 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38630 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39301 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39487 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39488 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39490 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39499 (SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39501 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39506 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39507 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39509 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40901 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-40904 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40923 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40929 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40932 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40942 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40943 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40953 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40959 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40966 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40967 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40978 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40982 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40987 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40988 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40995 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40998 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H *CVE-2024-40999 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-41014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41015 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41016 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-41044 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-41048 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41060 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41063 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41063 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41064 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41064 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41066 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41066 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-41070 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41071 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41072 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2024-41076 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41078 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41081 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41089 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41089 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41090 ( SUSE ): 7.1CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41091 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41095 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41095 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42070 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-42070 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42093 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-42096 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42096 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-42119 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42120 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42124 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42223 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42223 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42224 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42224 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves 178 vulnerabilities and has seven security fixes can now be installed. ## Description: The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-42096: x86: stop playing stack games in profile_pc() (bsc#1228633). *CVE-2024-39506: liquidio: adjust a NULL pointer handling path in lio_vf_rep_copy_packet (bsc#1227729). * CVE-2021-47619: i40e: Fix queues reservation for XDP (bsc#1226645). * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743). * CVE-2024-42124: scsi: qedf: Make qedf_execute_tmf() non-preemptible (bsc#1228705). * CVE-2024-42223: media: dvb-frontends: tda10048: Fix integer overflow (bsc#1228726). * CVE-2024-42119: drm/amd/display: Skip finding free audio for unknown engine_id (bsc#1228584). * CVE-2024-42120: drm/amd/display: Check pipe offset before setting vblank (bsc#1228588). * CVE-2024-41095: drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (bsc#1228662). * CVE-2024-42224: net: dsa: mv88e6xxx: Correct check for empty list (bsc#1228723). * CVE-2024-41072: wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (bsc#1228626). * CVE-2024-41048: skmsg: Skip zero length skb in sk_msg_recvmsg (bsc#1228565). * CVE-2024-40995: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() (bsc#1227830). * CVE-2024-41044: ppp: reject claimed-as-LCP but actually malformed packets (bsc#1228530). * CVE-2024-41066: ibmvnic: add tx check to prevent skb leak (bsc#1228640). * CVE-2024-42093: net/dpaa2: Avoid explicit cpumask var allocation on stack (bsc#1228680). * CVE-2024-41089: drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (bsc#1228658). * CVE-2024-41060: drm/radeon: check bo_va-> bo is non-NULL before using it (bsc#1228567). * CVE-2022-48829: NFSD: Fix NFSv3 SETATTR/CREATE's handling of large file sizes (bsc#1228055). * CVE-2022-48828: NFSD: Fix ia_size underflow (bsc#1228054). * CVE-2022-48827: NFSD: Fix the behavior of READ near OFFSET_MAX (bsc#1228037). * CVE-2024-41078: btrfs: qgroup: fix quota root leak after quota disable failure (bsc#1228655). * CVE-2024-41071: wifi: mac80211: Avoid address calculations via out ofbounds array indexing (bsc#1228625). * CVE-2024-41064: powerpc/eeh: avoid possible crash when edev-> pdev changes (bsc#1228599). * CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks (bsc#1224700). * CVE-2024-41081: ila: block BH in ila_output() (bsc#1228617). * CVE-2024-40978: scsi: qedi: Fix crash while reading debugfs attribute (bsc#1227929). * CVE-2022-48792: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task (bsc#1228013). * CVE-2022-48823: scsi: qedf: Fix refcount issue when LOGO is received during TMF (bsc#1228045). * CVE-2024-41076: NFSv4: Fix memory leak in nfs4_set_security_label (bsc#1228649). * CVE-2024-40998: ext4: fix uninitialized ratelimit_state-> lock access in __ext4_fill_super() (bsc#1227866). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). * CVE-2024-40987: drm/amdgpu: fix UBSAN warning in kv_dpm.c (bsc#1228235). * CVE-2022-48826: drm/vc4: Fix deadlock on DSI device attach error (bsc#1227975) * CVE-2024-27437: vfio/pci: Disable auto-enable of exclusive INTx IRQ (bsc#1222625). * CVE-2024-41015: ocfs2: add bounds checking to ocfs2_check_dir_entry() (bsc#1228409). * CVE-2024-41016: ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). * CVE-2024-41063: bluetooth: hci_core: cancel all works upon hci_unregister_dev() (bsc#1228580). * CVE-2024-42070: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers (bsc#1228470). * CVE-2024-41070: KVM: PPC: Book3S HV: Prevent UAF in kvm_spapr_tce_attach_iommu_group() (bsc#1228581). * CVE-2021-47405: HID: usbhid: free raw_report buffers in usbhid_stop (bsc#1225238). * CVE-2024-40988: drm/radeon: fix UBSAN warning in kv_dpm.c (bsc#1227957). * CVE-2024-40932: drm/exynos/vidi: fix memory leak in .get_modes() (bsc#1227828). * CVE-2021-47403: ipack: ipoctal: fix module reference leak (bsc#1225241). * CVE-2021-47388: mac80211: fix use-after-freein CCMP/GCMP RX (bsc#1225214). * CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408). * CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913). * CVE-2024-35837: net: mvpp2: clear BM pool before initialization (bsc#1224500). * CVE-2021-47588: sit: do not call ipip6_dev_free() from sit_init_net() (bsc#1226568). * CVE-2022-48804: vt_ioctl: fix array_index_nospec in vt_setactivate (bsc#1227968). * CVE-2024-40967: serial: imx: Introduce timeout when waiting on transmitter empty (bsc#1227891). * CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886). * CVE-2022-48850: net-sysfs: add check for netdevice being present to speed_show (bsc#1228071). * CVE-2021-47582: usb: core: Do not hold the device lock while sleeping in do_proc_control() (bsc#1226559). * CVE-2024-40982: ssb: fix potential NULL pointer dereference in ssb_device_uevent() (bsc#1227865). * CVE-2021-47468: isdn: mISDN: Fix sleeping function called from invalid context (bsc#1225346). * CVE-2021-47395: mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap (bsc#1225326). * CVE-2022-48810: ipmr,ip6mr: acquire RTNL before calling ip[6]mr_free_table() on failure path (bsc#1227936). * CVE-2023-52594: Fixed potential array-index-out-of-bounds read in ath9k_htc_txstatus() (bsc#1221045). * CVE-2022-48855: sctp: fix kernel-infoleak for SCTP sockets (bsc#1228003). * CVE-2021-47580: scsi: scsi_debug: Fix type in min_t to avoid stack OOB (bsc#1226550). * CVE-2024-26735: ipv6: sr: fix possible use-after-free and null-ptr-deref (bsc#1222372). * CVE-2024-38560: scsi: bfa: Ensure the copied buf is NUL terminated (bsc#1226786). * CVE-2022-48811: ibmvnic: do not release napi in __ibmvnic_open() (bsc#1227928). * CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bsc#1186463). * CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (bsc#1179610). * CVE-2024-40937: gve: Clear napi-> skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730). * CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786). * CVE-2024-40941: wifi: iwlwifi: mvm: do not read past the mfuart notifcation (bsc#1227771). * CVE-2022-48860: ethernet: Fix error handling in xemaclite_of_probe (bsc#1228008). * CVE-2022-48863: mISDN: Fix memory leak in dsp_pipeline_build() (bsc#1228063). * CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806). * CVE-2024-39499: vmci: prevent speculation leaks by sanitizing event in event_deliver() (bsc#1227725). * CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573) * CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641) * CVE-2024-40959: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (bsc#1227884). * CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512) * CVE-2021-47441: mlxsw: thermal: Fix out-of-bounds memory accesses (bsc#1225224) * CVE-2021-47194: cfg80211: call cfg80211_stop_ap when switch from P2P_GO type (bsc#1222829). * CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815) * CVE-2022-48775: Drivers: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj (bsc#1227924). * CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()(bsc#1223813) * CVE-2024-40929: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids (bsc#1227774). * CVE-2024-40912: wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() (bsc#1227790). * CVE-2024-40942: wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects (bsc#1227770). * CVE-2022-48857: NFC: port100: fix use-after-free in port100_send_complete (bsc#1228005). * CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719). * CVE-2021-47606: net: netlink: af_netlink: Prevent empty skb by adding a check on len. (bsc#1226555). * CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non- allocated memory (bsc#1227762). * CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820). * CVE-2024-26830: Fixed i40e to not allow untrusted VF to remove administratively set MAC (bsc#1223012). * CVE-2021-47516: nfp: Fix memory leak in nfp_cpp_area_cache_add() (bsc#1225427). * CVE-2021-47501: i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc (bsc#1225361). * CVE-2024-39501: drivers: core: synchronize really_probe() and dev_uevent() (bsc#1227754). * CVE-2023-52743: ice: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1225003) * CVE-2021-47542: net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() (bsc#1225455). * CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711) * CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545) * CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778) * CVE-2021-47599: btrfs: use latest_dev in btrfs_show_devname (bsc#1226571). * CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138). * CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326). * CVE-2021-47597: inet_diag: fix kernel-infoleak for UDP sockets (bsc#1226553). *CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626). * CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783). * CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942). * CVE-2023-52619: Fixed possible crash when setting number of cpus to an odd number in pstore/ram (bsc#1221618). * CVE-2024-26659: Fixed wrong handling of isoc Babble and Buffer Overrun events in xhci (bsc#1222317). * CVE-2024-35978: Bluetooth: Fix memory leak in hci_req_sync_complete() (bsc#1224571). * CVE-2023-52669: crypto: s390/aes - Fix buffer overread in CTR mode (bsc#1224637). * CVE-2023-52615: Fixed page fault dead lock on mmap-ed hwrng (bsc#1221614). * CVE-2023-52612: Fixed req-> dst buffer overflow in crypto/scomp (bsc#1221616). * CVE-2024-35995: ACPI: CPPC: Use access_width over bit_width for system memory accesses (bsc#1224557). * CVE-2023-52623: Fixed suspicious RCU usage in SUNRPC (bsc#1222060). * CVE-2021-47295: net: sched: fix memory leak in tcindex_partial_destroy_work (bsc#1224975) * CVE-2023-52693: ACPI: video: check for error while searching for backlight device parent (bsc#1224686). * CVE-2023-52683: ACPI: LPIT: Avoid u32 multiplication overflow (bsc#1224627). * CVE-2023-4244: Fixed a use-after-free in the nf_tables component, which could be exploited to achieve local privilege escalation (bsc#1215420). * CVE-2024-39475: fbdev: savage: Handle err return when savagefb_check_var failed (bsc#1227435) * CVE-2021-47520: can: pch_can: pch_can_rx_normal: fix use after free (bsc#1225431). * CVE-2024-36941: wifi: nl80211: do not free NULL coalescing rule (bsc#1225835). * CVE-2021-47145: btrfs: do not BUG_ON in link_to_fixup_dir (bsc#1222005). * CVE-2021-47547: net: tulip: de4x5: fix the problem that the array 'lp-> phy' may be out of bound (bsc#1225505). * CVE-2023-52817: drm/amdgpu: Fix a null pointer access when thesmc_rreg pointer is NULL (bsc#1225569). * CVE-2023-52819: drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga (bsc#1225532). * CVE-2023-52818: drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7 (bsc#1225530). * CVE-2023-52753: drm/amd/display: Avoid NULL dereference of timing generator (bsc#1225478). * CVE-2024-36014: drm/arm/malidp: fix a possible null pointer dereference (bsc#1225593). * CVE-2024-26636: llc: make llc_ui_sendmsg() more robust against bonding changes (bsc#1221659). * CVE-2024-26635: llc: Drop support for ETH_P_TR_802_2 (bsc#1221656). * CVE-2024-35828: wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer() (bsc#1224622). * CVE-2023-52507: Fixed possible shift-out-of-bounds in nfc/nci (bsc#1220833). * CVE-2024-38598: md: fix resync softlockup when bitmap size is less than array size (bsc#1226757). * CVE-2024-35805: dm snapshot: fix lockup in dm_exception_table_exit (bsc#1224743). * CVE-2024-26880: dm: call the resume method on internal suspend (bsc#1223188). * CVE-2021-47498: dm rq: do not queue request to blk-mq during DM suspend (bsc#1225357). * CVE-2021-47275: bcache: avoid oversized read request in cache missing code path (bsc#1224965). * CVE-2024-38619: usb-storage: alauda: Check whether the media is initialized (bsc#1226861). * CVE-2021-47201: iavf: free q_vectors before queues in iavf_disable_vf (bsc#1222792). * CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021). * CVE-2024-38630: watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger (bsc#1226908). * CVE-2024-39301: net/9p: fix uninit-value in p9_client_rpc() (bsc#1226994). * CVE-2021-47559: net/smc: Fix NULL pointer dereferencing in smc_vlan_by_tcpsk() (bsc#1225396). The following non-security bugs were fixed: * Fix spurious WARNING caused by a qxl driver patch (bsc#1227213,bsc#1227191) * KVM: PPC: Book3S HV: Do not take kvm-> lock around kvm_for_each_vcpu (bsc#1065729). * KVM: PPC: Book3S HV: remove extraneous asterisk from rm_host_ipi_action() comment (bsc#1065729). * KVM: PPC: Book3S PR: Exiting split hack mode needs to fixup both PC and LR (bsc#1065729). * KVM: PPC: Book3S: Fix some RCU-list locks (git-fixes). * KVM: PPC: Book3S: Only report KVM_CAP_SPAPR_TCE_VFIO on powernv machines (bsc#1065729). * KVM: PPC: Book3S: Use new mutex to synchronize access to rtas token list (bsc#1065729). * KVM: PPC: Inform the userspace about TCE update failures (bsc#1065729). * KVM: PPC: Move and undef TRACE_INCLUDE_PATH/FILE (bsc#1065729). * PCI: Fix resource double counting on remove & rescan (git-fixes). * PCI: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN (git- fixes). * PM: hibernate: x86: Use crc32 instead of md5 for hibernation e820 integrity check (git-fixes). * SUNRPC: Fix gss_free_in_token_pages() (git-fixes). * SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (git- fixes). * Tools: hv: kvp: eliminate 'may be used uninitialized' warning (git-fixes). * USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (git- fixes). * btrfs: fix 64bit compat send ioctl arguments not initializing version member (bsc#1228030). * btrfs: fix send ioctl on 32bit with 64bit kernel (bsc#1228030). * btrfs: incremental send, fix emission of invalid clone operations (bsc#1228030). * btrfs: remove unused members dir_path from recorded_ref (bsc#1228030). * btrfs: send, improve clone range (bsc#1228030). * btrfs: send: add new command FILEATTR for file attributes (bsc#1228030). * btrfs: send: add stream v2 definitions (bsc#1228030). * btrfs: send: always use the rbtree based inode ref management infrastructure (bsc#1228030). * btrfs: send: avoid copying file data (bsc#1228030). * btrfs: send: explicitly number commands and attributes (bsc#1228030). * btrfs: send: fix failures when processing inodes with no links (bsc#1228030). * btrfs: send: fixsend failure of a subcase of orphan inodes (bsc#1228030). * btrfs: send: fix sending link commands for existing file paths (bsc#1228030). * btrfs: send: get rid of i_size logic in send_write() (bsc#1228030). * btrfs: send: introduce recorded_ref_alloc and recorded_ref_free (bsc#1228030). * btrfs: send: prepare for v2 protocol (bsc#1228030). * btrfs: send: refactor arguments of get_inode_info() (bsc#1228030). * btrfs: send: remove stale code when checking for shared extents (bsc#1228030). * btrfs: send: remove unused found_type parameter to lookup_dir_item_inode() (bsc#1228030). * btrfs: send: remove unused send_ctx::{total,cmd}_send_size (bsc#1228030). * btrfs: send: use boolean types for current inode status (bsc#1228030). * btrfs: silence maybe-uninitialized warning in clone_range (bsc#1228030). * drm/amdgpu/debugfs: fix error code when smc register accessors are NULL (git-fixes). * drm/vc4: dsi: Only register our component once a DSI device is (bsc#1227975) * hv_netvsc: rndis_filter needs to select NLS (git-fixes). * ipv6: sr: fix incorrect unregister order (git-fixes). * kgdb: Add kgdb_has_hit_break function (git-fixes). * kgdb: Move the extern declaration kgdb_has_hit_break() to generic kgdb.h (git-fixes). * net: hsr: fix placement of logical operator in a multi-line statement (bsc#1223021). * net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes). * net: mana: select PAGE_POOL (git-fixes). * net_sched: add a temporary refcnt for struct tcindex_data (bsc#1224975). * net_sched: fix a memory leak in cls_tcindex (bsc#1224975). * net_sched: fix a missing refcnt in tcindex_init() (bsc#1224975). * net_sched: hold rtnl lock in tcindex_partial_destroy_work() (bsc#1224975) * nfs: Handle error of rpc_proc_register() in nfs_net_init() (git-fixes). * nvme: fixup comment for nvme RDMA Provider Type (git-fixes). * ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). * ocfs2: remove redundant assignmentto variable free_space (bsc#1228409). * ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * sched/deadline: Fix BUG_ON condition for deboosted tasks (bsc#1227407). * scsi: qla2xxx: Avoid possible run-time warning with long model_num (bsc#1228850). * scsi: qla2xxx: Complete command early within lock (bsc#1228850). * scsi: qla2xxx: Convert comma to semicolon (bsc#1228850). * scsi: qla2xxx: Drop driver owner assignment (bsc#1228850). * scsi: qla2xxx: During vport delete send async logout explicitly (bsc#1228850). * scsi: qla2xxx: Fix debugfs output for fw_resource_count (bsc#1228850). * scsi: qla2xxx: Fix flash read failure (bsc#1228850). * scsi: qla2xxx: Fix for possible memory corruption (bsc#1228850). * scsi: qla2xxx: Fix optrom version displayed in FDMI (bsc#1228850). * scsi: qla2xxx: Reduce fabric scan duplicate code (bsc#1228850). * scsi: qla2xxx: Remove unused struct 'scsi_dif_tuple' (bsc#1228850). * scsi: qla2xxx: Return ENOBUFS if sg_cnt is more than one for ELS cmds (bsc#1228850). * scsi: qla2xxx: Unable to act on RSCN for port online (bsc#1228850). * scsi: qla2xxx: Update version to 10.02.09.300-k (bsc#1228850). * scsi: qla2xxx: Use QP lock to search for bsg (bsc#1228850). * scsi: qla2xxx: validate nvme_local_port correctly (bsc#1228850). * signal: Introduce clear_siginfo (git-fixes). * string.h: Introduce memtostr() and memtostr_pad() (bsc#1228850). * sunrpc: fix NFSACL RPC retry on soft mount (git-fixes). * tools lib: Fix builds when glibc contains strlcpy() (git-fixes). * tools: hv: fix KVP and VSS daemons exit code (git-fixes). * usb: add a hcd_uses_dma helper (git-fixes). * usb: atm: cxacru: fix endpoint checking in cxacru_bind() (git-fixes). * usb: musb: da8xx: fix a resource leak in probe() (git-fixes). * x86/apic: Fix kernel panic when booting with intremap=off and x2apic_phys (git-fixes). * x86/bhi:Avoid warning in #DB handler due to BHI mitigation (git-fixes). * x86/boot/e820: Fix typo in e820.c comment (git-fixes). * x86/bugs: Remove CONFIG_BHI_MITIGATION_AUTO and spectre_bhi=auto (git- fixes). * x86/bugs: Replace CONFIG_SPECTRE_BHI_{ON,OFF} with CONFIG_MITIGATION_SPECTRE_BHI (git-fixes). * x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs (git-fixes). * x86/fpu: Return proper error codes from user access functions (git-fixes). * x86/ioremap: Fix page aligned size calculation in __ioremap_caller() (git- fixes). * x86/kprobes: Fix kprobes instruction boudary check with CONFIG_RETHUNK (git- fixes). * x86/kprobes: Fix optprobe optimization check with CONFIG_RETHUNK (git- fixes). * x86/msr: Fix wr/rdmsr_safe_regs_on_cpu() prototypes (git-fixes). * x86/numa: Use cpumask_available instead of hardcoded NULL check (git-fixes). * x86: __memcpy_flushcache: fix wrong alignment if size > 2^32 (git-fixes). * xfs: check that dir block entries do not off the end of the buffer (git- fixes). * xfs: refactor xfs_verifier_error and xfs_buf_ioerror (git-fixes). * xfs: remove XFS_WANT_CORRUPTED_RETURN from dir3 data verifiers (git-fixes). * xhci: Poll for U0 after disabling USB2 LPM (git-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2901=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2901=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2901=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (nosrc x86_64) * kernel-azure-4.12.14-16.194.1 * SUSELinux Enterprise Server for SAP Applications 12 SP5 (x86_64) * kernel-azure-debugsource-4.12.14-16.194.1 * kernel-azure-devel-4.12.14-16.194.1 * kernel-azure-base-4.12.14-16.194.1 * kernel-azure-base-debuginfo-4.12.14-16.194.1 * kernel-syms-azure-4.12.14-16.194.1 * kernel-azure-debuginfo-4.12.14-16.194.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * kernel-devel-azure-4.12.14-16.194.1 * kernel-source-azure-4.12.14-16.194.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (nosrc x86_64) * kernel-azure-4.12.14-16.194.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * kernel-azure-debugsource-4.12.14-16.194.1 * kernel-azure-devel-4.12.14-16.194.1 * kernel-azure-base-4.12.14-16.194.1 * kernel-azure-base-debuginfo-4.12.14-16.194.1 * kernel-syms-azure-4.12.14-16.194.1 * kernel-azure-debuginfo-4.12.14-16.194.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * kernel-devel-azure-4.12.14-16.194.1 * kernel-source-azure-4.12.14-16.194.1 * SUSE Linux Enterprise Server 12 SP5 (nosrc x86_64) * kernel-azure-4.12.14-16.194.1 * SUSE Linux Enterprise Server 12 SP5 (x86_64) * kernel-azure-debugsource-4.12.14-16.194.1 * kernel-azure-devel-4.12.14-16.194.1 * kernel-azure-base-4.12.14-16.194.1 * kernel-azure-base-debuginfo-4.12.14-16.194.1 * kernel-syms-azure-4.12.14-16.194.1 * kernel-azure-debuginfo-4.12.14-16.194.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * kernel-devel-azure-4.12.14-16.194.1 * kernel-source-azure-4.12.14-16.194.1 ## References: * https://www.suse.com/security/cve/CVE-2020-26558.html * https://www.suse.com/security/cve/CVE-2021-0129.html * https://www.suse.com/security/cve/CVE-2021-47145.html * https://www.suse.com/security/cve/CVE-2021-47191.html * https://www.suse.com/security/cve/CVE-2021-47194.html * https://www.suse.com/security/cve/CVE-2021-47197.html *https://www.suse.com/security/cve/CVE-2021-47201.html * https://www.suse.com/security/cve/CVE-2021-47219.html * https://www.suse.com/security/cve/CVE-2021-47275.html * https://www.suse.com/security/cve/CVE-2021-47295.html * https://www.suse.com/security/cve/CVE-2021-47388.html * https://www.suse.com/security/cve/CVE-2021-47395.html * https://www.suse.com/security/cve/CVE-2021-47399.html * https://www.suse.com/security/cve/CVE-2021-47403.html * https://www.suse.com/security/cve/CVE-2021-47405.html * https://www.suse.com/security/cve/CVE-2021-47438.html * https://www.suse.com/security/cve/CVE-2021-47441.html * https://www.suse.com/security/cve/CVE-2021-47468.html * https://www.suse.com/security/cve/CVE-2021-47498.html * https://www.suse.com/security/cve/CVE-2021-47501.html * https://www.suse.com/security/cve/CVE-2021-47516.html * https://www.suse.com/security/cve/CVE-2021-47520.html * https://www.suse.com/security/cve/CVE-2021-47542.html * https://www.suse.com/security/cve/CVE-2021-47547.html * https://www.suse.com/security/cve/CVE-2021-47559.html * https://www.suse.com/security/cve/CVE-2021-47580.html * https://www.suse.com/security/cve/CVE-2021-47582.html * https://www.suse.com/security/cve/CVE-2021-47588.html * https://www.suse.com/security/cve/CVE-2021-47597.html * https://www.suse.com/security/cve/CVE-2021-47599.html * https://www.suse.com/security/cve/CVE-2021-47606.html * https://www.suse.com/security/cve/CVE-2021-47619.html * https://www.suse.com/security/cve/CVE-2022-20368.html * https://www.suse.com/security/cve/CVE-2022-28748.html * https://www.suse.com/security/cve/CVE-2022-2964.html * https://www.suse.com/security/cve/CVE-2022-48775.html * https://www.suse.com/security/cve/CVE-2022-48792.html * https://www.suse.com/security/cve/CVE-2022-48794.html * https://www.suse.com/security/cve/CVE-2022-48804.html * https://www.suse.com/security/cve/CVE-2022-48805.html * https://www.suse.com/security/cve/CVE-2022-48810.html *https://www.suse.com/security/cve/CVE-2022-48811.html * https://www.suse.com/security/cve/CVE-2022-48823.html * https://www.suse.com/security/cve/CVE-2022-48826.html * https://www.suse.com/security/cve/CVE-2022-48827.html * https://www.suse.com/security/cve/CVE-2022-48828.html * https://www.suse.com/security/cve/CVE-2022-48829.html * https://www.suse.com/security/cve/CVE-2022-48836.html * https://www.suse.com/security/cve/CVE-2022-48839.html * https://www.suse.com/security/cve/CVE-2022-48850.html * https://www.suse.com/security/cve/CVE-2022-48855.html * https://www.suse.com/security/cve/CVE-2022-48857.html * https://www.suse.com/security/cve/CVE-2022-48860.html * https://www.suse.com/security/cve/CVE-2022-48863.html * https://www.suse.com/security/cve/CVE-2023-4244.html * https://www.suse.com/security/cve/CVE-2023-52435.html * https://www.suse.com/security/cve/CVE-2023-52507.html * https://www.suse.com/security/cve/CVE-2023-52594.html * https://www.suse.com/security/cve/CVE-2023-52612.html * https://www.suse.com/security/cve/CVE-2023-52615.html * https://www.suse.com/security/cve/CVE-2023-52619.html * https://www.suse.com/security/cve/CVE-2023-52623.html * https://www.suse.com/security/cve/CVE-2023-52669.html * https://www.suse.com/security/cve/CVE-2023-52683.html * https://www.suse.com/security/cve/CVE-2023-52693.html * https://www.suse.com/security/cve/CVE-2023-52743.html * https://www.suse.com/security/cve/CVE-2023-52753.html * https://www.suse.com/security/cve/CVE-2023-52817.html * https://www.suse.com/security/cve/CVE-2023-52818.html * https://www.suse.com/security/cve/CVE-2023-52819.html * https://www.suse.com/security/cve/CVE-2023-52885.html * https://www.suse.com/security/cve/CVE-2024-26615.html * https://www.suse.com/security/cve/CVE-2024-26635.html * https://www.suse.com/security/cve/CVE-2024-26636.html * https://www.suse.com/security/cve/CVE-2024-26659.html * https://www.suse.com/security/cve/CVE-2024-26663.html *https://www.suse.com/security/cve/CVE-2024-26735.html * https://www.suse.com/security/cve/CVE-2024-26830.html * https://www.suse.com/security/cve/CVE-2024-26863.html * https://www.suse.com/security/cve/CVE-2024-26880.html * https://www.suse.com/security/cve/CVE-2024-26920.html * https://www.suse.com/security/cve/CVE-2024-26924.html * https://www.suse.com/security/cve/CVE-2024-27019.html * https://www.suse.com/security/cve/CVE-2024-27020.html * https://www.suse.com/security/cve/CVE-2024-27025.html * https://www.suse.com/security/cve/CVE-2024-27437.html * https://www.suse.com/security/cve/CVE-2024-35805.html * https://www.suse.com/security/cve/CVE-2024-35806.html * https://www.suse.com/security/cve/CVE-2024-35819.html * https://www.suse.com/security/cve/CVE-2024-35828.html * https://www.suse.com/security/cve/CVE-2024-35837.html * https://www.suse.com/security/cve/CVE-2024-35887.html * https://www.suse.com/security/cve/CVE-2024-35893.html * https://www.suse.com/security/cve/CVE-2024-35934.html * https://www.suse.com/security/cve/CVE-2024-35947.html * https://www.suse.com/security/cve/CVE-2024-35949.html * https://www.suse.com/security/cve/CVE-2024-35966.html * https://www.suse.com/security/cve/CVE-2024-35967.html * https://www.suse.com/security/cve/CVE-2024-35978.html * https://www.suse.com/security/cve/CVE-2024-35995.html * https://www.suse.com/security/cve/CVE-2024-36004.html * https://www.suse.com/security/cve/CVE-2024-36014.html * https://www.suse.com/security/cve/CVE-2024-36288.html * https://www.suse.com/security/cve/CVE-2024-36592.html * https://www.suse.com/security/cve/CVE-2024-36901.html * https://www.suse.com/security/cve/CVE-2024-36902.html * https://www.suse.com/security/cve/CVE-2024-36919.html * https://www.suse.com/security/cve/CVE-2024-36924.html * https://www.suse.com/security/cve/CVE-2024-36939.html * https://www.suse.com/security/cve/CVE-2024-36941.html * https://www.suse.com/security/cve/CVE-2024-36952.html *https://www.suse.com/security/cve/CVE-2024-38558.html * https://www.suse.com/security/cve/CVE-2024-38560.html * https://www.suse.com/security/cve/CVE-2024-38598.html * https://www.suse.com/security/cve/CVE-2024-38619.html * https://www.suse.com/security/cve/CVE-2024-38630.html * https://www.suse.com/security/cve/CVE-2024-39301.html * https://www.suse.com/security/cve/CVE-2024-39475.html * https://www.suse.com/security/cve/CVE-2024-39487.html * https://www.suse.com/security/cve/CVE-2024-39488.html * https://www.suse.com/security/cve/CVE-2024-39490.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-39499.html * https://www.suse.com/security/cve/CVE-2024-39501.html * https://www.suse.com/security/cve/CVE-2024-39506.html * https://www.suse.com/security/cve/CVE-2024-39507.html * https://www.suse.com/security/cve/CVE-2024-39509.html * https://www.suse.com/security/cve/CVE-2024-40901.html * https://www.suse.com/security/cve/CVE-2024-40904.html * https://www.suse.com/security/cve/CVE-2024-40912.html * https://www.suse.com/security/cve/CVE-2024-40923.html * https://www.suse.com/security/cve/CVE-2024-40929.html * https://www.suse.com/security/cve/CVE-2024-40932.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40941.html * https://www.suse.com/security/cve/CVE-2024-40942.html * https://www.suse.com/security/cve/CVE-2024-40943.html * https://www.suse.com/security/cve/CVE-2024-40953.html * https://www.suse.com/security/cve/CVE-2024-40959.html * https://www.suse.com/security/cve/CVE-2024-40966.html * https://www.suse.com/security/cve/CVE-2024-40967.html * https://www.suse.com/security/cve/CVE-2024-40978.html * https://www.suse.com/security/cve/CVE-2024-40982.html * https://www.suse.com/security/cve/CVE-2024-40987.html * https://www.suse.com/security/cve/CVE-2024-40988.html * https://www.suse.com/security/cve/CVE-2024-40990.html *https://www.suse.com/security/cve/CVE-2024-40995.html * https://www.suse.com/security/cve/CVE-2024-40998.html * https://www.suse.com/security/cve/CVE-2024-40999.html * https://www.suse.com/security/cve/CVE-2024-41014.html * https://www.suse.com/security/cve/CVE-2024-41015.html * https://www.suse.com/security/cve/CVE-2024-41016.html * https://www.suse.com/security/cve/CVE-2024-41044.html * https://www.suse.com/security/cve/CVE-2024-41048.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-41060.html * https://www.suse.com/security/cve/CVE-2024-41063.html * https://www.suse.com/security/cve/CVE-2024-41064.html * https://www.suse.com/security/cve/CVE-2024-41066.html * https://www.suse.com/security/cve/CVE-2024-41070.html * https://www.suse.com/security/cve/CVE-2024-41071.html * https://www.suse.com/security/cve/CVE-2024-41072.html * https://www.suse.com/security/cve/CVE-2024-41076.html * https://www.suse.com/security/cve/CVE-2024-41078.html * https://www.suse.com/security/cve/CVE-2024-41081.html * https://www.suse.com/security/cve/CVE-2024-41089.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-41091.html * https://www.suse.com/security/cve/CVE-2024-41095.html * https://www.suse.com/security/cve/CVE-2024-42070.html * https://www.suse.com/security/cve/CVE-2024-42093.html * https://www.suse.com/security/cve/CVE-2024-42096.html * https://www.suse.com/security/cve/CVE-2024-42119.html * https://www.suse.com/security/cve/CVE-2024-42120.html * https://www.suse.com/security/cve/CVE-2024-42124.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://www.suse.com/security/cve/CVE-2024-42223.html * https://www.suse.com/security/cve/CVE-2024-42224.html * https://bugzilla.suse.com/show_bug.cgi?id=1065729 * https://bugzilla.suse.com/show_bug.cgi?id=1088701 * https://bugzilla.suse.com/show_bug.cgi?id=1149446 *https://bugzilla.suse.com/show_bug.cgi?id=1179610 * https://bugzilla.suse.com/show_bug.cgi?id=1186463 * https://bugzilla.suse.com/show_bug.cgi?id=1196018 * https://bugzilla.suse.com/show_bug.cgi?id=1202346 * https://bugzilla.suse.com/show_bug.cgi?id=1215420 * https://bugzilla.suse.com/show_bug.cgi?id=1216834 * https://bugzilla.suse.com/show_bug.cgi?id=1220138 * https://bugzilla.suse.com/show_bug.cgi?id=1220833 * https://bugzilla.suse.com/show_bug.cgi?id=1220942 * https://bugzilla.suse.com/show_bug.cgi?id=1221045 * https://bugzilla.suse.com/show_bug.cgi?id=1221614 * https://bugzilla.suse.com/show_bug.cgi?id=1221616 * https://bugzilla.suse.com/show_bug.cgi?id=1221618 * https://bugzilla.suse.com/show_bug.cgi?id=1221656 * https://bugzilla.suse.com/show_bug.cgi?id=1221659 * https://bugzilla.suse.com/show_bug.cgi?id=1222005 * https://bugzilla.suse.com/show_bug.cgi?id=1222060 * https://bugzilla.suse.com/show_bug.cgi?id=1222317 * https://bugzilla.suse.com/show_bug.cgi?id=1222326 * https://bugzilla.suse.com/show_bug.cgi?id=1222372 * https://bugzilla.suse.com/show_bug.cgi?id=1222625 * https://bugzilla.suse.com/show_bug.cgi?id=1222776 * https://bugzilla.suse.com/show_bug.cgi?id=1222792 * https://bugzilla.suse.com/show_bug.cgi?id=1222824 * https://bugzilla.suse.com/show_bug.cgi?id=1222829 * https://bugzilla.suse.com/show_bug.cgi?id=1222866 * https://bugzilla.suse.com/show_bug.cgi?id=1223012 * https://bugzilla.suse.com/show_bug.cgi?id=1223021 * https://bugzilla.suse.com/show_bug.cgi?id=1223188 * https://bugzilla.suse.com/show_bug.cgi?id=1223778 * https://bugzilla.suse.com/show_bug.cgi?id=1223813 * https://bugzilla.suse.com/show_bug.cgi?id=1223815 * https://bugzilla.suse.com/show_bug.cgi?id=1224500 * https://bugzilla.suse.com/show_bug.cgi?id=1224512 * https://bugzilla.suse.com/show_bug.cgi?id=1224545 * https://bugzilla.suse.com/show_bug.cgi?id=1224557 * https://bugzilla.suse.com/show_bug.cgi?id=1224571 *https://bugzilla.suse.com/show_bug.cgi?id=1224576 * https://bugzilla.suse.com/show_bug.cgi?id=1224587 * https://bugzilla.suse.com/show_bug.cgi?id=1224622 * https://bugzilla.suse.com/show_bug.cgi?id=1224627 * https://bugzilla.suse.com/show_bug.cgi?id=1224637 * https://bugzilla.suse.com/show_bug.cgi?id=1224641 * https://bugzilla.suse.com/show_bug.cgi?id=1224647 * https://bugzilla.suse.com/show_bug.cgi?id=1224663 * https://bugzilla.suse.com/show_bug.cgi?id=1224683 * https://bugzilla.suse.com/show_bug.cgi?id=1224686 * https://bugzilla.suse.com/show_bug.cgi?id=1224699 * https://bugzilla.suse.com/show_bug.cgi?id=1224700 * https://bugzilla.suse.com/show_bug.cgi?id=1224743 * https://bugzilla.suse.com/show_bug.cgi?id=1224965 * https://bugzilla.suse.com/show_bug.cgi?id=1224975 * https://bugzilla.suse.com/show_bug.cgi?id=1225003 * https://bugzilla.suse.com/show_bug.cgi?id=1225214 * https://bugzilla.suse.com/show_bug.cgi?id=1225224 * https://bugzilla.suse.com/show_bug.cgi?id=1225229 * https://bugzilla.suse.com/show_bug.cgi?id=1225238 * https://bugzilla.suse.com/show_bug.cgi?id=1225241 * https://bugzilla.suse.com/show_bug.cgi?id=1225326 * https://bugzilla.suse.com/show_bug.cgi?id=1225328 * https://bugzilla.suse.com/show_bug.cgi?id=1225346 * https://bugzilla.suse.com/show_bug.cgi?id=1225357 * https://bugzilla.suse.com/show_bug.cgi?id=1225361 * https://bugzilla.suse.com/show_bug.cgi?id=1225396 * https://bugzilla.suse.com/show_bug.cgi?id=1225427 * https://bugzilla.suse.com/show_bug.cgi?id=1225431 * https://bugzilla.suse.com/show_bug.cgi?id=1225455 * https://bugzilla.suse.com/show_bug.cgi?id=1225478 * https://bugzilla.suse.com/show_bug.cgi?id=1225505 * https://bugzilla.suse.com/show_bug.cgi?id=1225530 * https://bugzilla.suse.com/show_bug.cgi?id=1225532 * https://bugzilla.suse.com/show_bug.cgi?id=1225569 * https://bugzilla.suse.com/show_bug.cgi?id=1225593 * https://bugzilla.suse.com/show_bug.cgi?id=1225711 *https://bugzilla.suse.com/show_bug.cgi?id=1225719 * https://bugzilla.suse.com/show_bug.cgi?id=1225767 * https://bugzilla.suse.com/show_bug.cgi?id=1225820 * https://bugzilla.suse.com/show_bug.cgi?id=1225835 * https://bugzilla.suse.com/show_bug.cgi?id=1225838 * https://bugzilla.suse.com/show_bug.cgi?id=1225898 * https://bugzilla.suse.com/show_bug.cgi?id=1226550 * https://bugzilla.suse.com/show_bug.cgi?id=1226553 * https://bugzilla.suse.com/show_bug.cgi?id=1226555 * https://bugzilla.suse.com/show_bug.cgi?id=1226559 * https://bugzilla.suse.com/show_bug.cgi?id=1226568 * https://bugzilla.suse.com/show_bug.cgi?id=1226571 * https://bugzilla.suse.com/show_bug.cgi?id=1226645 * https://bugzilla.suse.com/show_bug.cgi?id=1226757 * https://bugzilla.suse.com/show_bug.cgi?id=1226783 * https://bugzilla.suse.com/show_bug.cgi?id=1226786 * https://bugzilla.suse.com/show_bug.cgi?id=1226834 * https://bugzilla.suse.com/show_bug.cgi?id=1226861 * https://bugzilla.suse.com/show_bug.cgi?id=1226908 * https://bugzilla.suse.com/show_bug.cgi?id=1226994 * https://bugzilla.suse.com/show_bug.cgi?id=1227191 * https://bugzilla.suse.com/show_bug.cgi?id=1227213 * https://bugzilla.suse.com/show_bug.cgi?id=1227407 * https://bugzilla.suse.com/show_bug.cgi?id=1227435 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227573 * https://bugzilla.suse.com/show_bug.cgi?id=1227618 * https://bugzilla.suse.com/show_bug.cgi?id=1227626 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227725 * https://bugzilla.suse.com/show_bug.cgi?id=1227729 * https://bugzilla.suse.com/show_bug.cgi?id=1227730 * https://bugzilla.suse.com/show_bug.cgi?id=1227733 * https://bugzilla.suse.com/show_bug.cgi?id=1227750 * https://bugzilla.suse.com/show_bug.cgi?id=1227754 * https://bugzilla.suse.com/show_bug.cgi?id=1227762 * https://bugzilla.suse.com/show_bug.cgi?id=1227770 *https://bugzilla.suse.com/show_bug.cgi?id=1227771 * https://bugzilla.suse.com/show_bug.cgi?id=1227772 * https://bugzilla.suse.com/show_bug.cgi?id=1227774 * https://bugzilla.suse.com/show_bug.cgi?id=1227786 * https://bugzilla.suse.com/show_bug.cgi?id=1227790 * https://bugzilla.suse.com/show_bug.cgi?id=1227806 * https://bugzilla.suse.com/show_bug.cgi?id=1227824 * https://bugzilla.suse.com/show_bug.cgi?id=1227828 * https://bugzilla.suse.com/show_bug.cgi?id=1227830 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227849 * https://bugzilla.suse.com/show_bug.cgi?id=1227865 * https://bugzilla.suse.com/show_bug.cgi?id=1227866 * https://bugzilla.suse.com/show_bug.cgi?id=1227884 * https://bugzilla.suse.com/show_bug.cgi?id=1227886 * https://bugzilla.suse.com/show_bug.cgi?id=1227891 * https://bugzilla.suse.com/show_bug.cgi?id=1227913 * https://bugzilla.suse.com/show_bug.cgi?id=1227924 * https://bugzilla.suse.com/show_bug.cgi?id=1227928 * https://bugzilla.suse.com/show_bug.cgi?id=1227929 * https://bugzilla.suse.com/show_bug.cgi?id=1227936 * https://bugzilla.suse.com/show_bug.cgi?id=1227957 * https://bugzilla.suse.com/show_bug.cgi?id=1227968 * https://bugzilla.suse.com/show_bug.cgi?id=1227969 * https://bugzilla.suse.com/show_bug.cgi?id=1227975 * https://bugzilla.suse.com/show_bug.cgi?id=1227985 * https://bugzilla.suse.com/show_bug.cgi?id=1227989 * https://bugzilla.suse.com/show_bug.cgi?id=1228003 * https://bugzilla.suse.com/show_bug.cgi?id=1228005 * https://bugzilla.suse.com/show_bug.cgi?id=1228008 * https://bugzilla.suse.com/show_bug.cgi?id=1228013 * https://bugzilla.suse.com/show_bug.cgi?id=1228025 * https://bugzilla.suse.com/show_bug.cgi?id=1228030 * https://bugzilla.suse.com/show_bug.cgi?id=1228037 * https://bugzilla.suse.com/show_bug.cgi?id=1228045 * https://bugzilla.suse.com/show_bug.cgi?id=1228054 * https://bugzilla.suse.com/show_bug.cgi?id=1228055 *https://bugzilla.suse.com/show_bug.cgi?id=1228063 * https://bugzilla.suse.com/show_bug.cgi?id=1228071 * https://bugzilla.suse.com/show_bug.cgi?id=1228235 * https://bugzilla.suse.com/show_bug.cgi?id=1228237 * https://bugzilla.suse.com/show_bug.cgi?id=1228327 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228408 * https://bugzilla.suse.com/show_bug.cgi?id=1228409 * https://bugzilla.suse.com/show_bug.cgi?id=1228410 * https://bugzilla.suse.com/show_bug.cgi?id=1228470 * https://bugzilla.suse.com/show_bug.cgi?id=1228530 * https://bugzilla.suse.com/show_bug.cgi?id=1228561 * https://bugzilla.suse.com/show_bug.cgi?id=1228565 * https://bugzilla.suse.com/show_bug.cgi?id=1228567 * https://bugzilla.suse.com/show_bug.cgi?id=1228580 * https://bugzilla.suse.com/show_bug.cgi?id=1228581 * https://bugzilla.suse.com/show_bug.cgi?id=1228584 * https://bugzilla.suse.com/show_bug.cgi?id=1228588 * https://bugzilla.suse.com/show_bug.cgi?id=1228599 * https://bugzilla.suse.com/show_bug.cgi?id=1228617 * https://bugzilla.suse.com/show_bug.cgi?id=1228625 * https://bugzilla.suse.com/show_bug.cgi?id=1228626 * https://bugzilla.suse.com/show_bug.cgi?id=1228633 * https://bugzilla.suse.com/show_bug.cgi?id=1228640 * https://bugzilla.suse.com/show_bug.cgi?id=1228649 * https://bugzilla.suse.com/show_bug.cgi?id=1228655 * https://bugzilla.suse.com/show_bug.cgi?id=1228658 * https://bugzilla.suse.com/show_bug.cgi?id=1228662 * https://bugzilla.suse.com/show_bug.cgi?id=1228680 * https://bugzilla.suse.com/show_bug.cgi?id=1228705 * https://bugzilla.suse.com/show_bug.cgi?id=1228723 * https://bugzilla.suse.com/show_bug.cgi?id=1228726 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 * https://bugzilla.suse.com/show_bug.cgi?id=1228850 . Canonical announces a critical software patch aimed at resolving various vulnerabilities along with detailed installation instructions.. Linux Kernel Update, SUSE Security Fixes, Important Kernel Advisory. .Severity: Important. LinuxSecurity.com Team
Aug 14, 2024
•Important
SuSE
100
security advisorykernel updateSUSE LinuxSUSE Linux 15 SP5: 2024:2372-1 Important Kernel Security Fixes
* bsc#1156395 * bsc#1190336 * bsc#1191958 * bsc#1193883 * bsc#1194826 . # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2372-1 Rating: important References: * bsc#1156395 * bsc#1190336 * bsc#1191958 * bsc#1193883 * bsc#1194826 * bsc#1195065 * bsc#1195254 * bsc#1195341 * bsc#1195349 * bsc#1195775 * bsc#1196746 * bsc#1197915 * bsc#1198014 * bsc#1199295 * bsc#1202767 * bsc#1202780 * bsc#1205205 * bsc#1207361 * bsc#1217912 * bsc#1218148 * bsc#1218570 * bsc#1218820 * bsc#1219224 * bsc#1219633 * bsc#1219847 * bsc#1220368 * bsc#1220812 * bsc#1220958 * bsc#1221086 * bsc#1221282 * bsc#1221958 * bsc#1222015 * bsc#1222072 * bsc#1222080 * bsc#1222241 * bsc#1222254 * bsc#1222364 * bsc#1222893 * bsc#1223013 * bsc#1223018 * bsc#1223265 * bsc#1223384 * bsc#1223641 * bsc#1224020 * bsc#1224331 * bsc#1224488 * bsc#1224497 * bsc#1224498 * bsc#1224504 * bsc#1224520 * bsc#1224539 * bsc#1224540 * bsc#1224552 * bsc#1224583 * bsc#1224588 * bsc#1224602 * bsc#1224603 * bsc#1224605 * bsc#1224612 * bsc#1224614 * bsc#1224619 * bsc#1224661 * bsc#1224662 * bsc#1224670 * bsc#1224671 * bsc#1224674 * bsc#1224677 * bsc#1224679 * bsc#1224696 * bsc#1224703 * bsc#1224712 * bsc#1224716 * bsc#1224719 * bsc#1224735 * bsc#1224749 * bsc#1224764 * bsc#1224765 * bsc#1224766 * bsc#1224935 * bsc#1224946 * bsc#1224951 * bsc#1225050 * bsc#1225098 * bsc#1225105 * bsc#1225300 * bsc#1225389 * bsc#1225391 * bsc#1225419 * bsc#1225426 * bsc#1225448 * bsc#1225452 * bsc#1225467 * bsc#1225475 * bsc#1225484 * bsc#1225487 * bsc#1225514 * bsc#1225518 * bsc#1225535 * bsc#1225585 * bsc#1225602 * bsc#1225611 * bsc#1225681 * bsc#1225692 * bsc#1225698 * bsc#1225699 * bsc#1225704 * bsc#1225714 * bsc#1225726 * bsc#1225732 * bsc#1225737 * bsc#1225749 * bsc#1225758 * bsc#1225759 * bsc#1225760 * bsc#1225767 * bsc#1225770 *bsc#1225823 * bsc#1225834 * bsc#1225840 * bsc#1225866 * bsc#1225872 * bsc#1225894 * bsc#1225945 * bsc#1226022 * bsc#1226131 * bsc#1226145 * bsc#1226149 * bsc#1226155 * bsc#1226211 * bsc#1226212 * bsc#1226226 * bsc#1226514 * bsc#1226520 * bsc#1226537 * bsc#1226538 * bsc#1226539 * bsc#1226550 * bsc#1226552 * bsc#1226553 * bsc#1226554 * bsc#1226556 * bsc#1226557 * bsc#1226558 * bsc#1226559 * bsc#1226561 * bsc#1226562 * bsc#1226563 * bsc#1226564 * bsc#1226566 * bsc#1226567 * bsc#1226569 * bsc#1226572 * bsc#1226575 * bsc#1226576 * bsc#1226577 * bsc#1226579 * bsc#1226580 * bsc#1226581 * bsc#1226582 * bsc#1226583 * bsc#1226585 * bsc#1226587 * bsc#1226588 * bsc#1226593 * bsc#1226595 * bsc#1226597 * bsc#1226601 * bsc#1226602 * bsc#1226603 * bsc#1226607 * bsc#1226610 * bsc#1226614 * bsc#1226616 * bsc#1226617 * bsc#1226618 * bsc#1226619 * bsc#1226621 * bsc#1226622 * bsc#1226624 * bsc#1226626 * bsc#1226628 * bsc#1226629 * bsc#1226632 * bsc#1226633 * bsc#1226634 * bsc#1226637 * bsc#1226643 * bsc#1226644 * bsc#1226645 * bsc#1226647 * bsc#1226650 * bsc#1226653 * bsc#1226657 * bsc#1226658 * bsc#1226669 * bsc#1226670 * bsc#1226672 * bsc#1226673 * bsc#1226674 * bsc#1226675 * bsc#1226678 * bsc#1226679 * bsc#1226683 * bsc#1226685 * bsc#1226686 * bsc#1226690 * bsc#1226691 * bsc#1226692 * bsc#1226693 * bsc#1226696 * bsc#1226697 * bsc#1226698 * bsc#1226699 * bsc#1226701 * bsc#1226702 * bsc#1226703 * bsc#1226704 * bsc#1226705 * bsc#1226706 * bsc#1226708 * bsc#1226709 * bsc#1226710 * bsc#1226711 * bsc#1226712 * bsc#1226713 * bsc#1226715 * bsc#1226716 * bsc#1226718 * bsc#1226719 * bsc#1226720 * bsc#1226721 * bsc#1226730 * bsc#1226732 * bsc#1226734 * bsc#1226735 * bsc#1226737 * bsc#1226738 * bsc#1226739 * bsc#1226740 * bsc#1226744 * bsc#1226746 * bsc#1226747 * bsc#1226749 * bsc#1226754 *bsc#1226762 * bsc#1226764 * bsc#1226767 * bsc#1226768 * bsc#1226769 * bsc#1226771 * bsc#1226774 * bsc#1226777 * bsc#1226780 * bsc#1226781 * bsc#1226785 * bsc#1226786 * bsc#1226789 * bsc#1226791 * bsc#1226839 * bsc#1226840 * bsc#1226841 * bsc#1226842 * bsc#1226848 * bsc#1226852 * bsc#1226857 * bsc#1226861 * bsc#1226863 * bsc#1226864 * bsc#1226867 * bsc#1226868 * bsc#1226876 * bsc#1226878 * bsc#1226883 * bsc#1226886 * bsc#1226890 * bsc#1226891 * bsc#1226895 * bsc#1226908 * bsc#1226915 * bsc#1226928 * bsc#1226948 * bsc#1226949 * bsc#1226950 * bsc#1226953 * bsc#1226962 * bsc#1226976 * bsc#1226992 * bsc#1226994 * bsc#1226996 * bsc#1227066 * bsc#1227096 * bsc#1227101 * bsc#1227103 * bsc#1227274 * jsc#PED-8491 * jsc#PED-8570 * jsc#PED-8690 Cross-References: * CVE-2021-4439 * CVE-2021-47089 * CVE-2021-47432 * CVE-2021-47515 * CVE-2021-47534 * CVE-2021-47538 * CVE-2021-47539 * CVE-2021-47555 * CVE-2021-47566 * CVE-2021-47571 * CVE-2021-47572 * CVE-2021-47576 * CVE-2021-47577 * CVE-2021-47578 * CVE-2021-47580 * CVE-2021-47582 * CVE-2021-47583 * CVE-2021-47584 * CVE-2021-47585 * CVE-2021-47586 * CVE-2021-47587 * CVE-2021-47589 * CVE-2021-47592 * CVE-2021-47595 * CVE-2021-47596 * CVE-2021-47597 * CVE-2021-47600 * CVE-2021-47601 * CVE-2021-47602 * CVE-2021-47603 * CVE-2021-47604 * CVE-2021-47605 * CVE-2021-47607 * CVE-2021-47608 * CVE-2021-47609 * CVE-2021-47610 * CVE-2021-47611 * CVE-2021-47612 * CVE-2021-47614 * CVE-2021-47615 * CVE-2021-47616 * CVE-2021-47617 * CVE-2021-47618 * CVE-2021-47619 * CVE-2021-47620 * CVE-2022-48711 * CVE-2022-48712 * CVE-2022-48713 * CVE-2022-48714 * CVE-2022-48715 * CVE-2022-48716 * CVE-2022-48717 * CVE-2022-48718 * CVE-2022-48720 * CVE-2022-48721 * CVE-2022-48722 * CVE-2022-48723 * CVE-2022-48724 * CVE-2022-48725 * CVE-2022-48726 * CVE-2022-48727 * CVE-2022-48728 * CVE-2022-48729 * CVE-2022-48730 * CVE-2022-48732 * CVE-2022-48733 * CVE-2022-48734 * CVE-2022-48735 * CVE-2022-48736 * CVE-2022-48737 * CVE-2022-48738 * CVE-2022-48739 * CVE-2022-48740 * CVE-2022-48743 * CVE-2022-48744 * CVE-2022-48745 * CVE-2022-48746 * CVE-2022-48747 * CVE-2022-48748 * CVE-2022-48749 * CVE-2022-48751 * CVE-2022-48752 * CVE-2022-48753 * CVE-2022-48754 * CVE-2022-48755 * CVE-2022-48756 * CVE-2022-48758 * CVE-2022-48759 * CVE-2022-48760 * CVE-2022-48761 * CVE-2022-48763 * CVE-2022-48765 * CVE-2022-48766 * CVE-2022-48767 * CVE-2022-48768 * CVE-2022-48769 * CVE-2022-48770 * CVE-2022-48771 * CVE-2022-48772 * CVE-2023-24023 * CVE-2023-52622 * CVE-2023-52658 * CVE-2023-52667 * CVE-2023-52670 * CVE-2023-52672 * CVE-2023-52675 * CVE-2023-52735 * CVE-2023-52737 * CVE-2023-52752 * CVE-2023-52766 * CVE-2023-52784 * CVE-2023-52787 * CVE-2023-52800 * CVE-2023-52835 * CVE-2023-52837 * CVE-2023-52843 * CVE-2023-52845 * CVE-2023-52846 * CVE-2023-52869 * CVE-2023-52881 * CVE-2023-52882 * CVE-2023-52884 * CVE-2024-26625 * CVE-2024-26644 * CVE-2024-26720 * CVE-2024-26842 * CVE-2024-26845 * CVE-2024-26923 * CVE-2024-26973 * CVE-2024-27432 * CVE-2024-33619 * CVE-2024-35247 * CVE-2024-35789 * CVE-2024-35790 * CVE-2024-35807 * CVE-2024-35814 * CVE-2024-35835 * CVE-2024-35848 * CVE-2024-35857 * CVE-2024-35861 * CVE-2024-35862 * CVE-2024-35864 * CVE-2024-35869 * CVE-2024-35878 * CVE-2024-35884 * CVE-2024-35886 * CVE-2024-35896 * CVE-2024-35898 * CVE-2024-35900 * CVE-2024-35905 * CVE-2024-35925 * CVE-2024-35950 * CVE-2024-35956 * CVE-2024-35958 * CVE-2024-35960 * CVE-2024-35962 * CVE-2024-35997 * CVE-2024-36005 * CVE-2024-36008 * CVE-2024-36017 * CVE-2024-36020 * CVE-2024-36021 * CVE-2024-36025 * CVE-2024-36477 * CVE-2024-36478 * CVE-2024-36479 * CVE-2024-36890 * CVE-2024-36894 * CVE-2024-36899 *CVE-2024-36900 * CVE-2024-36904 * CVE-2024-36915 * CVE-2024-36916 * CVE-2024-36917 * CVE-2024-36919 * CVE-2024-36934 * CVE-2024-36937 * CVE-2024-36940 * CVE-2024-36945 * CVE-2024-36949 * CVE-2024-36960 * CVE-2024-36964 * CVE-2024-36965 * CVE-2024-36967 * CVE-2024-36969 * CVE-2024-36971 * CVE-2024-36975 * CVE-2024-36978 * CVE-2024-37021 * CVE-2024-37078 * CVE-2024-37354 * CVE-2024-38381 * CVE-2024-38388 * CVE-2024-38390 * CVE-2024-38540 * CVE-2024-38541 * CVE-2024-38544 * CVE-2024-38545 * CVE-2024-38546 * CVE-2024-38547 * CVE-2024-38548 * CVE-2024-38549 * CVE-2024-38550 * CVE-2024-38552 * CVE-2024-38553 * CVE-2024-38555 * CVE-2024-38556 * CVE-2024-38557 * CVE-2024-38559 * CVE-2024-38560 * CVE-2024-38564 * CVE-2024-38565 * CVE-2024-38567 * CVE-2024-38568 * CVE-2024-38571 * CVE-2024-38573 * CVE-2024-38578 * CVE-2024-38579 * CVE-2024-38580 * CVE-2024-38581 * CVE-2024-38582 * CVE-2024-38583 * CVE-2024-38587 * CVE-2024-38590 * CVE-2024-38591 * CVE-2024-38594 * CVE-2024-38597 * CVE-2024-38599 * CVE-2024-38600 * CVE-2024-38601 * CVE-2024-38603 * CVE-2024-38605 * CVE-2024-38608 * CVE-2024-38616 * CVE-2024-38618 * CVE-2024-38619 * CVE-2024-38621 * CVE-2024-38627 * CVE-2024-38630 * CVE-2024-38633 * CVE-2024-38634 * CVE-2024-38635 * CVE-2024-38659 * CVE-2024-38661 * CVE-2024-38780 * CVE-2024-39301 * CVE-2024-39468 * CVE-2024-39469 * CVE-2024-39471 CVSS scores: * CVE-2021-4439 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47089 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47432 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47515 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47534 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47538 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47539 ( SUSE ): 3.3CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47555 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2021-47566 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2021-47571 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47571 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47572 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47572 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47576 ( SUSE ): 3.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:L * CVE-2021-47577 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47578 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47580 ( SUSE ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L * CVE-2021-47582 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47583 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47584 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47585 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47586 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47587 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47589 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47592 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47595 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47596 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47597 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47600 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47601 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47602 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47603 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47604 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47605 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47607 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47608 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47609 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47610 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47611 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47612 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47614 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47615 ( SUSE ): 3.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47616 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47617 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47618 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47620 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2022-48711 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48712 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2022-48713 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48714 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48715 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2022-48716 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48717 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48718 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48720 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48721 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48722 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48723 (SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48724 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48725 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48726 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48727 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-48728 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48729 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48730 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48732 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48733 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48734 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48735 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48736 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48737 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48738 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48739 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48740 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48743 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48744 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48745 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48746 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48747 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48748 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2022-48749 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48751 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48752 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H *CVE-2022-48753 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48754 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48755 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48756 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48758 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48759 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48760 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48761 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48763 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48765 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48766 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48767 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48768 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48769 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48770 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48771 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48772 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-24023 ( SUSE ): 6.8 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2023-24023 ( NVD ): 6.8 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2023-52622 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52658 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52667 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52670 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52672 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52675 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52735 ( SUSE ): 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52737 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52752 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52752 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52766 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52784 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52800 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52835 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52837 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52843 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52845 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52846 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52869 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52881 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L * CVE-2023-52882 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52884 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26625 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26644 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26720 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26842 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26845 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26973 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27432 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-33619 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35247 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35789 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35790 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35807 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35814 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35835 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35848 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35861 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35862 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35864 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35869 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35878 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35884 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35886 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35896 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35898 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35900 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35905 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35925 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35956 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35958 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35997 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35997 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36005 (SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36008 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36008 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36017 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-36020 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36021 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36025 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-36477 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-36477 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36478 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36479 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36890 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36894 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36899 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36900 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36904 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36915 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-36916 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36917 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36934 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L * CVE-2024-36937 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36940 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-36945 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36949 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36960 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H *CVE-2024-36964 ( SUSE ): 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36965 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36967 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36969 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36971 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36971 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36975 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36978 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-37021 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-37078 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-37354 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-38381 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-38388 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-38390 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38540 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38541 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38544 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38545 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38546 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38547 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38549 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38550 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38552 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-38553 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38555 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38556 ( SUSE ): 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38557 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38559 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38560 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38564 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-38565 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-38567 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38568 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-38571 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38573 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38578 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-38579 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-38580 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38581 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-38582 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38583 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38587 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-38590 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38591 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38594 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-38597 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38599 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-38600 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38601 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38603 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38605 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38608 ( SUSE): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-38616 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38618 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38621 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38627 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38630 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38633 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38634 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38635 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38659 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:H * CVE-2024-38661 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38780 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38780 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39301 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39468 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39469 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39471 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 * Public Cloud Module 15-SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves 249 vulnerabilities, contains three features and has 45 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2021-47089: kfence: fix memory leak when cat kfence objects (bsc#1220958. * CVE-2021-47432: lib/generic-radix-tree.c: Donot overflow in peek() (bsc#1225391). * CVE-2021-47515: seg6: fix the iif in the IPv6 socket control block (bsc#1225426). * CVE-2021-47538: rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() (bsc#1225448). * CVE-2021-47539: rxrpc: Fix rxrpc_peer leak in rxrpc_look_up_bundle() (bsc#1225452). * CVE-2021-47555: net: vlan: fix underflow for the real_dev refcnt (bsc#1225467). * CVE-2021-47566: Fix clearing user buffer by properly using clear_user() (bsc#1225514). * CVE-2021-47571: staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() (bsc#1225518). * CVE-2021-47572: net: nexthop: fix null pointer dereference when IPv6 is not enabled (bsc#1225389). * CVE-2022-48716: ASoC: codecs: wcd938x: fix incorrect used of portid (bsc#1226678). * CVE-2023-24023: Bluetooth: Add more enc key size check (bsc#1218148). * CVE-2023-52622: ext4: avoid online resizing failures due to oversized flex bg (bsc#1222080). * CVE-2023-52658: Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (bsc#1224719). * CVE-2023-52667: net/mlx5e: fix a potential double-free in fs_any_create_groups (bsc#1224603). * CVE-2023-52670: rpmsg: virtio: Free driver_override when rpmsg_remove() (bsc#1224696). * CVE-2023-52672: pipe: wakeup wr_wait after setting max_usage (bsc#1224614). * CVE-2023-52675: powerpc/imc-pmu: Add a null pointer check in update_events_in_group() (bsc#1224504). * CVE-2023-52735: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself (bsc#1225475). * CVE-2023-52737: btrfs: lock the inode in shared mode before starting fiemap (bsc#1225484). * CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487). * CVE-2023-52784: bonding: stop the device in bond_setup_by_slave() (bsc#1224946). * CVE-2023-52787: blk-mq: make sure active queue usage is held for bio_integrity_prep() (bsc#1225105). * CVE-2023-52835: perf/core: Bail out early if the request AUXarea is out of bound (bsc#1225602). * CVE-2023-52837: nbd: fix uaf in nbd_open (bsc#1224935). * CVE-2023-52843: llc: verify mac len before reading mac header (bsc#1224951). * CVE-2023-52845: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING (bsc#1225585). * CVE-2023-52846: hsr: Prevent use after free in prp_create_tagged_frame() (bsc#1225098). * CVE-2023-52869: pstore/platform: Add check for kstrdup (bsc#1225050). * CVE-2023-52881: tcp: do not accept ACK of bytes we never sent (bsc#1225611). * CVE-2023-52882: clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change (bsc#1225692). * CVE-2024-26625: Call sock_orphan() at release time (bsc#1221086) * CVE-2024-26644: btrfs: do not abort filesystem when attempting to snapshot deleted subvolume (bsc#1221282bsc#1222072). * CVE-2024-26720: mm: Avoid overflows in dirty throttling logic (bsc#1222364). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223384). * CVE-2024-26973: fat: fix uninitialized field in nostale filehandles (git- fixesbsc#1223641). * CVE-2024-27432: net: ethernet: mtk_eth_soc: fix PPE hanging issue (bsc#1224716). * CVE-2024-35247: fpga: region: add owner module and take its refcount (bsc#1226948). * CVE-2024-35789: Check fast rx for non-4addr sta VLAN changes (bsc#1224749). * CVE-2024-35790: usb: typec: altmodes/displayport: create sysfs nodes as driver's default device attribute group (bsc#1224712). * CVE-2024-35807: ext4: fix corruption during on-line resize (bsc#1224735). * CVE-2024-35835: net/mlx5e: fix a double-free in arfs_create_groups (bsc#1224605). * CVE-2024-35848: eeprom: at24: fix memory corruption race condition (bsc#1224612). * CVE-2024-35857: icmp: prevent possible NULL dereferences from icmp_build_probe() (bsc#1224619). * CVE-2024-35861: Fixed potential UAF in cifs_signal_cifsd_for_reconnect() (bsc#1224766). * CVE-2024-35862: Fixed potential UAF insmb2_is_network_name_deleted() (bsc#1224764). * CVE-2024-35864: Fixed potential UAF in smb2_is_valid_lease_break() (bsc#1224765). * CVE-2024-35869: smb: client: guarantee refcounted children from parent session (bsc#1224679). * CVE-2024-35884: udp: do not accept non-tunnel GSO skbs landing in a tunnel (bsc#1224520). * CVE-2024-35886: ipv6: Fix infinite recursion in fib6_dump_done() (bsc#1224670). * CVE-2024-35898: netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() (bsc#1224498). * CVE-2024-35900: netfilter: nf_tables: reject new basechain after table flag update (bsc#1224497). * CVE-2024-35925: block: prevent division by zero in blk_rq_stat_sum() (bsc#1224661). * CVE-2024-35950: drm/client: Fully protect modes with dev-> mode_config.mutex (bsc#1224703). * CVE-2024-35958: net: ena: Fix incorrect descriptor free behavior (bsc#1224677). * CVE-2024-35960: net/mlx5: Properly link new fs rules into the tree (bsc#1224588). * CVE-2024-35997: Remove I2C_HID_READ_PENDING flag to prevent lock-up (bsc#1224552). * CVE-2024-36005: netfilter: nf_tables: honor table dormant flag from netdev release event path (bsc#1224539). * CVE-2024-36008: ipv4: check for NULL idev in ip_route_use_hint() (bsc#1224540). * CVE-2024-36017: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation (bsc#1225681). * CVE-2024-36020: i40e: fix vf may be used uninitialized in this function warning (bsc#1225698). * CVE-2024-36021: net: hns3: fix kernel crash when devlink reload during pf initialization (bsc#1225699). * CVE-2024-36478: null_blk: fix null-ptr-dereference while configuring 'power' and 'submit_queues' (bsc#1226841). * CVE-2024-36479: fpga: bridge: add owner module and take its refcount (bsc#1226949). * CVE-2024-36890: mm/slab: make __free(kfree) accept error pointers (bsc#1225714). * CVE-2024-36894: usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete(bsc#1225749). * CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfo_changed_notify (bsc#1225737). * CVE-2024-36900: net: hns3: fix kernel crash when devlink reload during initialization (bsc#1225726). * CVE-2024-36904: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique() (bsc#1225732). * CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758). * CVE-2024-36916: blk-iocost: avoid out of bounds shift (bsc#1225759). * CVE-2024-36917: block: fix overflow in blk_ioctl_discard() (bsc#1225770). * CVE-2024-36919: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload (bsc#1225767). * CVE-2024-36934: bna: ensure the copied buf is NUL terminated (bsc#1225760). * CVE-2024-36937: xdp: use flags field to disambiguate broadcast redirect (bsc#1225834). * CVE-2024-36940: pinctrl: core: delete incorrect free in pinctrl_enable() (bsc#1225840). * CVE-2024-36945: net/smc: fix neighbour and rtable leak in smc_ib_find_route() (bsc#1225823). * CVE-2024-36949: amd/amdkfd: sync all devices to wait all processes being evicted (bsc#1225872) * CVE-2024-36964: fs/9p: only translate RWX permissions for plain 9P2000 (bsc#1225866). * CVE-2024-36971: net: fix __dst_negative_advice() race (bsc#1226145). * CVE-2024-36978: net: sched: sch_multiq: fix possible OOB write in multiq_tune() (bsc#1226514). * CVE-2024-37021: fpga: manager: add owner module and take its refcount (bsc#1226950). * CVE-2024-37078: nilfs2: fix potential kernel bug due to lack of writeback flag waiting (bsc#1227066). * CVE-2024-37354: btrfs: fix crash on racing fsync and size-extending write into prealloc (bsc#1227101). * CVE-2024-38545: RDMA/hns: Fix UAF for cq async event (bsc#1226595). * CVE-2024-38553: net: fec: remove .ndo_poll_controller to avoid deadlock (bsc#1226744). * CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607). * CVE-2024-38556: net/mlx5: Add a timeout to acquirethe command queue semaphore (bsc#1226774). * CVE-2024-38557: net/mlx5: Reload only IB representors upon lag disable/enable (bsc#1226781). * CVE-2024-38559: scsi: qedf: Ensure the copied buf is NUL terminated (bsc#1226785). * CVE-2024-38560: scsi: bfa: Ensure the copied buf is NUL terminated (bsc#1226786). * CVE-2024-38564: bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE (bsc#1226789). * CVE-2024-38568: drivers/perf: hisi: hns3: Fix out-of-bound access when valid event group (bsc#1226771). * CVE-2024-38578: ecryptfs: Fix buffer size for tag 66 packet (bsc#1226634,). * CVE-2024-38580: epoll: be better about file lifetimes (bsc#1226610). * CVE-2024-38594: net: stmmac: move the EST lock to struct stmmac_priv (bsc#1226734). * CVE-2024-38597: eth: sungem: remove .ndo_poll_controller to avoid deadlocks (bsc#1226749). * CVE-2024-38603: drivers/perf: hisi: hns3: Actually use devm_add_action_or_reset() (bsc#1226842). * CVE-2024-38608: net/mlx5e: Fix netif state handling (bsc#1226746). * CVE-2024-38627: stm class: Fix a double free in stm_register_device() (bsc#1226857). * CVE-2024-38659: enic: Validate length of nl attributes in enic_set_vf_port (bsc#1226883). * CVE-2024-38661: s390/ap: Fix crash in AP internal function modify_bitmap() (bsc#1226996). * CVE-2024-38780: dma-buf/sw-sync: do not enable IRQ from sync_print_obj() (bsc#1226886). * CVE-2024-39301: net/9p: fix uninit-value in p9_client_rpc() (bsc#1226994). * CVE-2024-39468: smb: client: fix deadlock in smb2_find_smb_tcon() (bsc#1227103. * CVE-2024-39469: nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors (bsc#1226992). The following non-security bugs were fixed: * ACPI: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx (stable- fixes). * ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." (git-fixes). * ALSA/hda: intel-dsp-config: Document AVS as dsp_driver option(git-fixes). * ALSA: Fix deadlocks with kctl removals at disconnection (stable-fixes). * ALSA: hda/realtek: Add quirks for Lenovo 13X (stable-fixes). * ALSA: hda/realtek: Adjust G814JZR to use SPI init for amp (git-fixes). * ALSA: hda/realtek: Enable headset mic on IdeaPad 330-17IKB 81DM (git-fixes). * ALSA: hda/realtek: Fix conflicting quirk for PCI SSID 17aa:3820 (git-fixes). * ALSA: hda/realtek: Limit mic boost on N14AP7 (stable-fixes). * ALSA: hda/realtek: Remove Framework Laptop 16 from quirks (git-fixes). * ALSA: hda/realtek: fix mute/micmute LEDs do not work for ProBook 440/460 G11 (stable-fixes). * ALSA: hda/realtek: fix mute/micmute LEDs do not work for ProBook 445/465 G11 (stable-fixes). * ALSA: hda: intel-dsp-config: harden I2C/I2S codec detection (stable-fixes). * ALSA: timer: Set lower bound of start tick time (stable-fixes). * ASoC: amd: acp: add a null check for chip_pdev structure (git-fixes). * ASoC: amd: acp: remove i2s configuration check in acp_i2s_probe() (git- fixes). * ASoC: da7219-aad: fix usage of device_get_named_child_node() (stable-fixes). * ASoC: fsl-asoc-card: set priv-> pdev before using it (git-fixes). * ASoC: rt5645: Fix the electric noise due to the CBJ contacts floating (stable-fixes). * ASoC: rt715-sdca: volume step modification (stable-fixes). * ASoC: rt715: add vendor clear control register (stable-fixes). * Add remote for nfs maintainer * Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ (git-fixes). * Fix new build warnings regarding unused variables: Changed build warnings: **_*_ 2 warnings ***** * unused-variable (cl) in ../fs/ceph/mds_client.c in ceph_queue_cap_unlink_work ../fs/ceph/mds_client.c: In function 'ceph_queue_cap_unlink_work': ../fs/ceph/mds_client.c:2421:22: warning: unused variable 'cl' [-Wunused-variable] * unused-variable (cl) in ../fs/ceph/mds_client.c in ceph_cap_unlink_work ../fs/ceph/mds_client.c: In function 'ceph_cap_unlink_work':../fs/ceph/mds_client.c:2436:22: warning: unused variable 'cl' [-Wunused-variable] * HID: core: remove unnecessary WARN_ON() in implement() (git-fixes). * HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode() (git- fixes). * Input: ili210x - fix ili251x_read_touch_data() return value (git-fixes). * NFS: abort nfs_atomic_open_v23 if name is too long (bsc#1219847). * NFS: add atomic_open for NFSv3 to handle O_TRUNC correctly (bsc#1219847). * NFS: avoid infinite loop in pnfs_update_layout (bsc#1219633 bsc#1226226). * PCI/ASPM: Update save_state when configuration changes (bsc#1226915) * PCI: Clear Secondary Status errors after enumeration (bsc#1226928) * RAS/AMD/ATL: Fix MI300 bank hash (bsc#1225300). * RAS/AMD/ATL: Use system settings for MI300 DRAM to normalized address translation (bsc#1225300). * RDMA/hns: Fix incorrect sge nums calculation (git-fixes) * RDMA/irdma: Drop unused kernel push code (git-fixes) * RDMA/mlx5: Add check for srq max_sge attribute (git-fixes) * USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (git- fixes). * USB: xen-hcd: Traverse host/ when CONFIG_USB_XEN_HCD is selected (git- fixes). * X.509: Fix the parser of extended key usage for length (bsc#1218820). * arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY (git-fixes). * arm64: mm: Batch dsb and isb when populating pgtables (jsc#PED-8690). * arm64: mm: Do not remap pgtables for allocate vs populate (jsc#PED-8690). * arm64: mm: Do not remap pgtables per-cont(pte|pmd) block (jsc#PED-8690). * arm64: mm: do not acquire mutex when rewriting swapper (jsc#PED-8690). * ata: ahci: Clean up sysfs file on error (git-fixes). * ata: libata-core: Fix double free on error (git-fixes). * ata: libata-core: Fix null pointer dereference on error (git-fixes). * batman-adv: Do not accept TT entries for out-of-spec VIDs (git-fixes). * bpf, sockmap: Check for any of tcp_bpf_prots when cloning a listener (git- fixes). * btrfs: avoid copyingBTRFS_ROOT_SUBVOL_DEAD flag to snapshot of subvolume being deleted (bsc#1221282). * cachefiles: remove requests from xarray during flushing requests (bsc#1226588). * ceph: add ceph_cap_unlink_work to fire check_caps() immediately (bsc#1226022). * ceph: always check dir caps asynchronously (bsc#1226022). * ceph: always queue a writeback when revoking the Fb caps (bsc#1226022). * ceph: break the check delayed cap loop every 5s (bsc#1226022). * ceph: switch to use cap_delay_lock for the unlink delay list (bsc#1226022). * cgroup: Add annotation for holding namespace_sem in current_cgns_cgroup_from_root() (bsc#1222254). * cgroup: Eliminate the need for cgroup_mutex in proc_cgroup_show() (bsc#1222254). * cgroup: Make operations on the cgroup root_list RCU safe (bsc#1222254). * cgroup: Remove unnecessary list_empty() (bsc#1222254). * cgroup: preserve KABI of cgroup_root (bsc#1222254). * cifs: fix hang in wait_for_response() (bsc#1220812, bsc#1220368). * cpufreq: amd-pstate: Fix the inconsistency in max frequency units (git- fixes). * crypto: ecrdsa - Fix module auto-load on add_key (stable-fixes). * dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (git- fixes). * dmaengine: ioatdma: Fix missing kmem_cache_destroy() (git-fixes). * drivers: core: synchronize really_probe() and dev_uevent() (git-fixes). * drm/amd/display: Add VCO speed parameter for DCN31 FPU (stable-fixes). * drm/amd/display: Add dtbclk access to dcn315 (stable-fixes). * drm/amd/display: Exit idle optimizations before HDCP execution (stable- fixes). * drm/amd/display: Set color_mgmt_changed to true on unsuspend (stable-fixes). * drm/amd/display: drop unnecessary NULL checks in debugfs (stable-fixes). * drm/amd/display: revert Exit idle optimizations before HDCP execution (stable-fixes). * drm/amd: Fix shutdown (again) on some SMU v13.0.4/11 platforms (git-fixes). * drm/amdgpu/atomfirmware: add intergrated info v2.3 table (stable-fixes). *drm/amdgpu/mes: fix use-after-free issue (stable-fixes). * drm/amdgpu: Fix the ring buffer size for queue VM flush (stable-fixes). * drm/amdgpu: Update BO eviction priorities (stable-fixes). * drm/amdgpu: add error handle to avoid out-of-bounds (stable-fixes). * drm/amdgpu: fix UBSAN warning in kv_dpm.c (stable-fixes). * drm/amdkfd: Flush the process wq before creating a kfd_process (stable- fixes). * drm/amdkfd: Rework kfd_locked handling (bsc#1225872) * drm/bridge/panel: Fix runtime warning on panel bridge release (git-fixes). * drm/exynos/vidi: fix memory leak in .get_modes() (stable-fixes). * drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found (git-fixes). * drm/i915/dpt: Make DPT object unshrinkable (git-fixes). * drm/i915/gt: Disarm breadcrumbs if engines are already idle (git-fixes). * drm/i915/gt: Fix potential UAF by revoke of fence registers (git-fixes). * drm/i915/guc: avoid FIELD_PREP warning (git-fixes). * drm/i915/mso: using joiner is not possible with eDP MSO (git-fixes). * drm/komeda: check for error-valued pointer (git-fixes). * drm/lima: add mask irq callback to gp and pp (stable-fixes). * drm/lima: mask irqs in timeout path before hard reset (stable-fixes). * drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails (git- fixes). * drm/msm/dp: Avoid a long timeout for AUX transfer if nothing connected (git- fixes). * drm/msm/dp: Return IRQ_NONE for unhandled interrupts (stable-fixes). * drm/msm: Enable clamp_to_idle for 7c3 (stable-fixes). * drm/panel-samsung-atna33xc20: Use ktime_get_boottime for delays (stable- fixes). * drm/panel: simple: Add missing display timing flags for KOE TX26D202VM0BWA (git-fixes). * drm/radeon: fix UBSAN warning in kv_dpm.c (stable-fixes). * drm/vmwgfx: 3D disabled should not effect STDU memory limits (git-fixes). * drm/vmwgfx: Filter modes which exceed graphics memory (git-fixes). * gpio: davinci: Validate the obtained number of IRQs (git-fixes). *gpio: tqmx86: fix typo in Kconfig label (git-fixes). * gpio: tqmx86: introduce shadow register for GPIO output value (git-fixes). * gpiolib: cdev: Disallow reconfiguration without direction (uAPI v1) (git- fixes). * hwmon: (shtc1) Fix property misspelling (git-fixes). * i2c: at91: Fix the functionality flags of the slave-only interface (git- fixes). * i2c: designware: Fix the functionality flags of the slave-only interface (git-fixes). * i2c: ocores: set IACK bit after core is enabled (git-fixes). * i2c: testunit: discard write requests while old command is running (git- fixes). * i2c: testunit: do not erase registers after STOP (git-fixes). * iio: accel: fxls8962af: select IIO_BUFFER & IIO_KFIFO_BUF (git-fixes). * iio: adc: ad7266: Fix variable checking bug (git-fixes). * iio: adc: ad9467: fix scan type sign (git-fixes). * iio: chemical: bme680: Fix calibration data variable (git-fixes). * iio: chemical: bme680: Fix overflows in compensate() functions (git-fixes). * iio: chemical: bme680: Fix pressure value output (git-fixes). * iio: chemical: bme680: Fix sensor data read operation (git-fixes). * iio: dac: ad5592r: fix temperature channel scaling value (git-fixes). * iio: imu: inv_icm42600: delete unneeded update watermark call (git-fixes). * intel_th: pci: Add Meteor Lake-S CPU support (stable-fixes). * iommu/amd: Fix sysfs leak in iommu init (git-fixes). * iommu: Return right value in iommu_sva_bind_device() (git-fixes). * iommu: mtk: fix module autoloading (git-fixes). * ipvs: Fix checksumming on GSO of SCTP packets (bsc#1221958) * kbuild: Install dtb files as 0644 in Makefile.dtbinst (git-fixes). * kbuild: do not include include/config/auto.conf from shell scripts (bsc#1227274). * kconfig: doc: fix a typo in the note about 'imply' (git-fixes). * kconfig: fix comparison to constant symbols, 'm', 'n' (git-fixes). * kernel-doc: fix struct_group_tagged() parsing (git-fixes). * lib: memcpy_kunit: Fix an invalid format specifier in anassertion msg (git- fixes). * media: flexcop-usb: clean up endpoint sanity checks (stable-fixes). * media: flexcop-usb: fix sanity check of bNumEndpoints (git-fixes). * media: ipu3-cio2: Use temporary storage for struct device pointer (stable- fixes). * media: lgdt3306a: Add a check against null-pointer-def (stable-fixes). * media: mxl5xx: Move xpt structures off stack (stable-fixes). * media: radio-shark2: Avoid led_names truncations (git-fixes). * media: v4l2-core: hold videodev_lock until dev reg, finishes (stable-fixes). * mei: me: release irq in mei_me_pci_resume error path (git-fixes). * mkspec-dtb: add toplevel symlinks also on arm * mmc: core: Add mmc_gpiod_set_cd_config() function (stable-fixes). * mmc: core: Do not force a retune before RPMB switch (stable-fixes). * mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A (stable- fixes). * mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working (stable-fixes). * mmc: sdhci-acpi: Sort DMI quirks alphabetically (stable-fixes). * mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos (git-fixes). * mmc: sdhci: Do not invert write-protect twice (git-fixes). * mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro() (git-fixes). * mmc: sdhci_am654: Add ITAPDLYSEL in sdhci_j721e_4bit_set_clock (git-fixes). * mmc: sdhci_am654: Add OTAP/ITAP delay enable (git-fixes). * mmc: sdhci_am654: Drop lookup for deprecated ti,otap-del-sel (stable-fixes). * mmc: sdhci_am654: Fix ITAPDLY for HS400 timing (git-fixes). * mtd: rawnand: Bypass a couple of sanity checks during NAND identification (git-fixes). * mtd: rawnand: Ensure ECC configuration is propagated to upper layers (git- fixes). * mtd: rawnand: rockchip: ensure NVDDR timings are rejected (git-fixes). * net/mlx5e: Fix a race in command alloc flow (git-fixes). * net: can: j1939: Initialize unused data in j1939_send_one() (git-fixes). * net: can: j1939: enhanced error handling for tightly received RTSmessages in xtp_rx_rts_session_new (git-fixes). * net: can: j1939: recover socket queue on CAN bus error during BAM transmission (git-fixes). * net: ena: Fix redundant device NUMA node override (jsc#PED-8690). * net: mana: Enable MANA driver on ARM64 with 4K page size (jsc#PED-8491). * net: phy: Micrel KSZ8061: fix errata solution not taking effect problem (git-fixes). * net: phy: micrel: add Microchip KSZ 9477 to the device table (git-fixes). * net: usb: ax88179_178a: improve link status logs (git-fixes). * net: usb: ax88179_178a: improve reset check (git-fixes). * net: usb: qmi_wwan: add Telit FN920C04 compositions (stable-fixes). * net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings (git-fixes). * net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM (git- fixes). * nfsd: optimise recalculate_deny_mode() for a common case (bsc#1217912). * nilfs2: fix potential hang in nilfs_detach_log_writer() (stable-fixes). * nvme: find numa distance only if controller has valid numa id (git-fixes). * nvmet-passthru: propagate status from id override functions (git-fixes). * ocfs2: adjust enabling place for la window (bsc#1219224). * ocfs2: fix sparse warnings (bsc#1219224). * ocfs2: improve write IO performance when fragmentation is high (bsc#1219224). * ocfs2: speed up chain-list searching (bsc#1219224). * pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER (git- fixes). * pinctrl: qcom: spmi-gpio: drop broken pm8008 support (git-fixes). * pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins (git-fixes). * pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins (git-fixes). * pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set (git-fixes). * pinctrl: rockchip: use dedicated pinctrl type for RK3328 (git-fixes). * random: treat bootloader trust toggle the same way as cpu trust toggle (bsc#1226953). * regulator: bd71815: fix ramp values (git-fixes). * regulator: core:Fix modpost error "regulator_get_regmap" undefined (git- fixes). * regulator: irq_helpers: duplicate IRQ name (stable-fixes). * regulator: vqmmc-ipq4019: fix module autoloading (stable-fixes). * rpm/kernel-obs-build.spec.in: Add iso9660 (bsc#1226212) Some builds do not just create an iso9660 image, but also mount it during build. * rpm/kernel-obs-build.spec.in: Add networking modules for docker (bsc#1226211) docker needs more networking modules, even legacy iptable_nat and _filter. * rpm/kernel-obs-build.spec.in: Include algif_hash, aegis128 and xts modules afgif_hash is needed by some packages (e.g. iwd) for tests, xts is used for LUKS2 volumes by default and aegis128 is useful as AEAD cipher for LUKS2. Wrap the long line to make it readable. * rpm/mkspec-dtb: dtbs have moved to vendor sub-directories in 6.5 By commit 724ba6751532 ("ARM: dts: Move .dts files to vendor sub-directories"). So switch to them. * sched/core: Fix incorrect initialization of the 'burst' parameter in cpu_max_write() (bsc#1226791). * scsi: sd: Update DIX config every time sd_revalidate_disk() is called (bsc#1218570). * smb: client: ensure to try all targets when finding nested links (bsc#1224020). * smb: client: guarantee refcounted children from parent session (bsc#1224679, CVE-35869). * soundwire: cadence: fix invalid PDI offset (stable-fixes). * spi: stm32: Do not warn about spurious interrupts (git-fixes). * supported.conf: Add APM X-Gene SoC hardware monitoring driver (bsc#1223265 jsc#PED-8570) * supported.conf: mark orangefs as optional We do not support orangefs at all (and it is already marked as such), but since there are no SLE consumers of it, mark it as optional. * supported.conf: mark ufs as unsupported UFS is an unsupported filesystem, mark it as such. We still keep it around (not marking as optional), to accommodate any potential migrations from BSD systems. * tty: mcf: MCF54418 has 10 UARTS (git-fixes). * usb-storage:alauda: Check whether the media is initialized (git-fixes). * usb: atm: cxacru: fix endpoint checking in cxacru_bind() (git-fixes). * usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock (git-fixes). * usb: fotg210-hcd: delete an incorrect bounds test (git-fixes). * usb: gadget: printer: fix races against disable (git-fixes). * usb: musb: da8xx: fix a resource leak in probe() (git-fixes). * usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state (git-fixes). * usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps (git- fixes). * usb: typec: ucsi: Ack also failed Get Error commands (git-fixes). * usb: typec: ucsi: Never send a lone connector change ack (git-fixes). * usb: xhci: Implement xhci_handshake_check_state() helper (git-fixes). * usb: xhci: address off-by-one in xhci_num_trbs_free() (git-fixes). * usb: xhci: improve debug message in xhci_ring_expansion_needed() (git- fixes). * watchdog: bd9576: Drop "always-running" property (git-fixes). * watchdog: bd9576_wdt: switch to using devm_fwnode_gpiod_get() (stable- fixes). * wifi: cfg80211: Lock wiphy in cfg80211_get_station (git-fixes). * wifi: cfg80211: fix the order of arguments for trace events of the tx_rx_evt class (stable-fixes). * wifi: cfg80211: pmsr: use correct nla_get_uX functions (git-fixes). * wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef (git- fixes). * wifi: iwlwifi: mvm: check n_ssids before accessing the ssids (git-fixes). * wifi: iwlwifi: mvm: do not read past the mfuart notifcation (git-fixes). * wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64 (git-fixes). * wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() (git- fixes). * wifi: mac80211: correctly parse Spatial Reuse Parameter Set element (git- fixes). * wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects (git-fixes). * wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU (stable-fixes). * wifi:rtlwifi: rtl8192de: Fix endianness issue in RX path (stable-fixes). * wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE (stable-fixes). * x86/mce: Dynamically size space for machine check records (bsc#1222241). * x86/tsc: Trust initial offset in architectural TSC-adjust MSRs (bsc#1222015 bsc#1226962). * xfs: make sure sb_fdblocks is non-negative (bsc#1225419). * xhci: Fix failure to detect ring expansion need (git-fixes). * xhci: Fix transfer ring expansion size calculation (git-fixes). * xhci: Handle TD clearing for multiple streams case (git-fixes). * xhci: Simplify event ring dequeue pointer update for port change events (git-fixes). * xhci: Stop unnecessary tracking of free trbs in a ring (git-fixes). * xhci: fix matching completion events with TDs (git-fixes). * xhci: remove unused stream_id parameter from xhci_handle_halted_endpoint() (git-fixes). * xhci: restre deleted trb fields for tracing (git-fixes). * xhci: retry Stop Endpoint on buggy NEC controllers (git-fixes). * xhci: simplify event ring dequeue tracking for transfer events (git-fixes). * xhci: update event ring dequeue pointer position to controller correctly (git-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Public Cloud Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP5-2024-2372=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2372=1 openSUSE-SLE-15.5-2024-2372=1 ## Package List: * Public Cloud Module 15-SP5 (aarch64 nosrc x86_64) * kernel-azure-5.14.21-150500.33.60.1 * Public Cloud Module 15-SP5 (aarch64 x86_64) * kernel-azure-devel-debuginfo-5.14.21-150500.33.60.1 * kernel-syms-azure-5.14.21-150500.33.60.1 * kernel-azure-devel-5.14.21-150500.33.60.1 *kernel-azure-debugsource-5.14.21-150500.33.60.1 * kernel-azure-debuginfo-5.14.21-150500.33.60.1 * Public Cloud Module 15-SP5 (noarch) * kernel-devel-azure-5.14.21-150500.33.60.1 * kernel-source-azure-5.14.21-150500.33.60.1 * openSUSE Leap 15.5 (aarch64 x86_64) * kernel-syms-azure-5.14.21-150500.33.60.1 * kernel-azure-optional-5.14.21-150500.33.60.1 * kernel-azure-extra-debuginfo-5.14.21-150500.33.60.1 * kernel-azure-debugsource-5.14.21-150500.33.60.1 * ocfs2-kmp-azure-5.14.21-150500.33.60.1 * kernel-azure-debuginfo-5.14.21-150500.33.60.1 * kselftests-kmp-azure-debuginfo-5.14.21-150500.33.60.1 * dlm-kmp-azure-debuginfo-5.14.21-150500.33.60.1 * reiserfs-kmp-azure-5.14.21-150500.33.60.1 * cluster-md-kmp-azure-debuginfo-5.14.21-150500.33.60.1 * kernel-azure-devel-5.14.21-150500.33.60.1 * reiserfs-kmp-azure-debuginfo-5.14.21-150500.33.60.1 * kernel-azure-livepatch-devel-5.14.21-150500.33.60.1 * kselftests-kmp-azure-5.14.21-150500.33.60.1 * gfs2-kmp-azure-debuginfo-5.14.21-150500.33.60.1 * kernel-azure-extra-5.14.21-150500.33.60.1 * ocfs2-kmp-azure-debuginfo-5.14.21-150500.33.60.1 * kernel-azure-devel-debuginfo-5.14.21-150500.33.60.1 * kernel-azure-optional-debuginfo-5.14.21-150500.33.60.1 * gfs2-kmp-azure-5.14.21-150500.33.60.1 * cluster-md-kmp-azure-5.14.21-150500.33.60.1 * dlm-kmp-azure-5.14.21-150500.33.60.1 * openSUSE Leap 15.5 (aarch64 nosrc x86_64) * kernel-azure-5.14.21-150500.33.60.1 * openSUSE Leap 15.5 (x86_64) * kernel-azure-vdso-5.14.21-150500.33.60.1 * kernel-azure-vdso-debuginfo-5.14.21-150500.33.60.1 * openSUSE Leap 15.5 (noarch) * kernel-devel-azure-5.14.21-150500.33.60.1 * kernel-source-azure-5.14.21-150500.33.60.1 ## References: * https://www.suse.com/security/cve/CVE-2021-4439.html * https://www.suse.com/security/cve/CVE-2021-47089.html * https://www.suse.com/security/cve/CVE-2021-47432.html * https://www.suse.com/security/cve/CVE-2021-47515.html *https://www.suse.com/security/cve/CVE-2021-47534.html * https://www.suse.com/security/cve/CVE-2021-47538.html * https://www.suse.com/security/cve/CVE-2021-47539.html * https://www.suse.com/security/cve/CVE-2021-47555.html * https://www.suse.com/security/cve/CVE-2021-47566.html * https://www.suse.com/security/cve/CVE-2021-47571.html * https://www.suse.com/security/cve/CVE-2021-47572.html * https://www.suse.com/security/cve/CVE-2021-47576.html * https://www.suse.com/security/cve/CVE-2021-47577.html * https://www.suse.com/security/cve/CVE-2021-47578.html * https://www.suse.com/security/cve/CVE-2021-47580.html * https://www.suse.com/security/cve/CVE-2021-47582.html * https://www.suse.com/security/cve/CVE-2021-47583.html * https://www.suse.com/security/cve/CVE-2021-47584.html * https://www.suse.com/security/cve/CVE-2021-47585.html * https://www.suse.com/security/cve/CVE-2021-47586.html * https://www.suse.com/security/cve/CVE-2021-47587.html * https://www.suse.com/security/cve/CVE-2021-47589.html * https://www.suse.com/security/cve/CVE-2021-47592.html * https://www.suse.com/security/cve/CVE-2021-47595.html * https://www.suse.com/security/cve/CVE-2021-47596.html * https://www.suse.com/security/cve/CVE-2021-47597.html * https://www.suse.com/security/cve/CVE-2021-47600.html * https://www.suse.com/security/cve/CVE-2021-47601.html * https://www.suse.com/security/cve/CVE-2021-47602.html * https://www.suse.com/security/cve/CVE-2021-47603.html * https://www.suse.com/security/cve/CVE-2021-47604.html * https://www.suse.com/security/cve/CVE-2021-47605.html * https://www.suse.com/security/cve/CVE-2021-47607.html * https://www.suse.com/security/cve/CVE-2021-47608.html * https://www.suse.com/security/cve/CVE-2021-47609.html * https://www.suse.com/security/cve/CVE-2021-47610.html * https://www.suse.com/security/cve/CVE-2021-47611.html * https://www.suse.com/security/cve/CVE-2021-47612.html * https://www.suse.com/security/cve/CVE-2021-47614.html *https://www.suse.com/security/cve/CVE-2021-47615.html * https://www.suse.com/security/cve/CVE-2021-47616.html * https://www.suse.com/security/cve/CVE-2021-47617.html * https://www.suse.com/security/cve/CVE-2021-47618.html * https://www.suse.com/security/cve/CVE-2021-47619.html * https://www.suse.com/security/cve/CVE-2021-47620.html * https://www.suse.com/security/cve/CVE-2022-48711.html * https://www.suse.com/security/cve/CVE-2022-48712.html * https://www.suse.com/security/cve/CVE-2022-48713.html * https://www.suse.com/security/cve/CVE-2022-48714.html * https://www.suse.com/security/cve/CVE-2022-48715.html * https://www.suse.com/security/cve/CVE-2022-48716.html * https://www.suse.com/security/cve/CVE-2022-48717.html * https://www.suse.com/security/cve/CVE-2022-48718.html * https://www.suse.com/security/cve/CVE-2022-48720.html * https://www.suse.com/security/cve/CVE-2022-48721.html * https://www.suse.com/security/cve/CVE-2022-48722.html * https://www.suse.com/security/cve/CVE-2022-48723.html * https://www.suse.com/security/cve/CVE-2022-48724.html * https://www.suse.com/security/cve/CVE-2022-48725.html * https://www.suse.com/security/cve/CVE-2022-48726.html * https://www.suse.com/security/cve/CVE-2022-48727.html * https://www.suse.com/security/cve/CVE-2022-48728.html * https://www.suse.com/security/cve/CVE-2022-48729.html * https://www.suse.com/security/cve/CVE-2022-48730.html * https://www.suse.com/security/cve/CVE-2022-48732.html * https://www.suse.com/security/cve/CVE-2022-48733.html * https://www.suse.com/security/cve/CVE-2022-48734.html * https://www.suse.com/security/cve/CVE-2022-48735.html * https://www.suse.com/security/cve/CVE-2022-48736.html * https://www.suse.com/security/cve/CVE-2022-48737.html * https://www.suse.com/security/cve/CVE-2022-48738.html * https://www.suse.com/security/cve/CVE-2022-48739.html * https://www.suse.com/security/cve/CVE-2022-48740.html * https://www.suse.com/security/cve/CVE-2022-48743.html *https://www.suse.com/security/cve/CVE-2022-48744.html * https://www.suse.com/security/cve/CVE-2022-48745.html * https://www.suse.com/security/cve/CVE-2022-48746.html * https://www.suse.com/security/cve/CVE-2022-48747.html * https://www.suse.com/security/cve/CVE-2022-48748.html * https://www.suse.com/security/cve/CVE-2022-48749.html * https://www.suse.com/security/cve/CVE-2022-48751.html * https://www.suse.com/security/cve/CVE-2022-48752.html * https://www.suse.com/security/cve/CVE-2022-48753.html * https://www.suse.com/security/cve/CVE-2022-48754.html * https://www.suse.com/security/cve/CVE-2022-48755.html * https://www.suse.com/security/cve/CVE-2022-48756.html * https://www.suse.com/security/cve/CVE-2022-48758.html * https://www.suse.com/security/cve/CVE-2022-48759.html * https://www.suse.com/security/cve/CVE-2022-48760.html * https://www.suse.com/security/cve/CVE-2022-48761.html * https://www.suse.com/security/cve/CVE-2022-48763.html * https://www.suse.com/security/cve/CVE-2022-48765.html * https://www.suse.com/security/cve/CVE-2022-48766.html * https://www.suse.com/security/cve/CVE-2022-48767.html * https://www.suse.com/security/cve/CVE-2022-48768.html * https://www.suse.com/security/cve/CVE-2022-48769.html * https://www.suse.com/security/cve/CVE-2022-48770.html * https://www.suse.com/security/cve/CVE-2022-48771.html * https://www.suse.com/security/cve/CVE-2022-48772.html * https://www.suse.com/security/cve/CVE-2023-24023.html * https://www.suse.com/security/cve/CVE-2023-52622.html * https://www.suse.com/security/cve/CVE-2023-52658.html * https://www.suse.com/security/cve/CVE-2023-52667.html * https://www.suse.com/security/cve/CVE-2023-52670.html * https://www.suse.com/security/cve/CVE-2023-52672.html * https://www.suse.com/security/cve/CVE-2023-52675.html * https://www.suse.com/security/cve/CVE-2023-52735.html * https://www.suse.com/security/cve/CVE-2023-52737.html * https://www.suse.com/security/cve/CVE-2023-52752.html *https://www.suse.com/security/cve/CVE-2023-52766.html * https://www.suse.com/security/cve/CVE-2023-52784.html * https://www.suse.com/security/cve/CVE-2023-52787.html * https://www.suse.com/security/cve/CVE-2023-52800.html * https://www.suse.com/security/cve/CVE-2023-52835.html * https://www.suse.com/security/cve/CVE-2023-52837.html * https://www.suse.com/security/cve/CVE-2023-52843.html * https://www.suse.com/security/cve/CVE-2023-52845.html * https://www.suse.com/security/cve/CVE-2023-52846.html * https://www.suse.com/security/cve/CVE-2023-52869.html * https://www.suse.com/security/cve/CVE-2023-52881.html * https://www.suse.com/security/cve/CVE-2023-52882.html * https://www.suse.com/security/cve/CVE-2023-52884.html * https://www.suse.com/security/cve/CVE-2024-26625.html * https://www.suse.com/security/cve/CVE-2024-26644.html * https://www.suse.com/security/cve/CVE-2024-26720.html * https://www.suse.com/security/cve/CVE-2024-26842.html * https://www.suse.com/security/cve/CVE-2024-26845.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26973.html * https://www.suse.com/security/cve/CVE-2024-27432.html * https://www.suse.com/security/cve/CVE-2024-33619.html * https://www.suse.com/security/cve/CVE-2024-35247.html * https://www.suse.com/security/cve/CVE-2024-35789.html * https://www.suse.com/security/cve/CVE-2024-35790.html * https://www.suse.com/security/cve/CVE-2024-35807.html * https://www.suse.com/security/cve/CVE-2024-35814.html * https://www.suse.com/security/cve/CVE-2024-35835.html * https://www.suse.com/security/cve/CVE-2024-35848.html * https://www.suse.com/security/cve/CVE-2024-35857.html * https://www.suse.com/security/cve/CVE-2024-35861.html * https://www.suse.com/security/cve/CVE-2024-35862.html * https://www.suse.com/security/cve/CVE-2024-35864.html * https://www.suse.com/security/cve/CVE-2024-35869.html * https://www.suse.com/security/cve/CVE-2024-35878.html *https://www.suse.com/security/cve/CVE-2024-35884.html * https://www.suse.com/security/cve/CVE-2024-35886.html * https://www.suse.com/security/cve/CVE-2024-35896.html * https://www.suse.com/security/cve/CVE-2024-35898.html * https://www.suse.com/security/cve/CVE-2024-35900.html * https://www.suse.com/security/cve/CVE-2024-35905.html * https://www.suse.com/security/cve/CVE-2024-35925.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://www.suse.com/security/cve/CVE-2024-35956.html * https://www.suse.com/security/cve/CVE-2024-35958.html * https://www.suse.com/security/cve/CVE-2024-35960.html * https://www.suse.com/security/cve/CVE-2024-35962.html * https://www.suse.com/security/cve/CVE-2024-35997.html * https://www.suse.com/security/cve/CVE-2024-36005.html * https://www.suse.com/security/cve/CVE-2024-36008.html * https://www.suse.com/security/cve/CVE-2024-36017.html * https://www.suse.com/security/cve/CVE-2024-36020.html * https://www.suse.com/security/cve/CVE-2024-36021.html * https://www.suse.com/security/cve/CVE-2024-36025.html * https://www.suse.com/security/cve/CVE-2024-36477.html * https://www.suse.com/security/cve/CVE-2024-36478.html * https://www.suse.com/security/cve/CVE-2024-36479.html * https://www.suse.com/security/cve/CVE-2024-36890.html * https://www.suse.com/security/cve/CVE-2024-36894.html * https://www.suse.com/security/cve/CVE-2024-36899.html * https://www.suse.com/security/cve/CVE-2024-36900.html * https://www.suse.com/security/cve/CVE-2024-36904.html * https://www.suse.com/security/cve/CVE-2024-36915.html * https://www.suse.com/security/cve/CVE-2024-36916.html * https://www.suse.com/security/cve/CVE-2024-36917.html * https://www.suse.com/security/cve/CVE-2024-36919.html * https://www.suse.com/security/cve/CVE-2024-36934.html * https://www.suse.com/security/cve/CVE-2024-36937.html * https://www.suse.com/security/cve/CVE-2024-36940.html * https://www.suse.com/security/cve/CVE-2024-36945.html *https://www.suse.com/security/cve/CVE-2024-36949.html * https://www.suse.com/security/cve/CVE-2024-36960.html * https://www.suse.com/security/cve/CVE-2024-36964.html * https://www.suse.com/security/cve/CVE-2024-36965.html * https://www.suse.com/security/cve/CVE-2024-36967.html * https://www.suse.com/security/cve/CVE-2024-36969.html * https://www.suse.com/security/cve/CVE-2024-36971.html * https://www.suse.com/security/cve/CVE-2024-36975.html * https://www.suse.com/security/cve/CVE-2024-36978.html * https://www.suse.com/security/cve/CVE-2024-37021.html * https://www.suse.com/security/cve/CVE-2024-37078.html * https://www.suse.com/security/cve/CVE-2024-37354.html * https://www.suse.com/security/cve/CVE-2024-38381.html * https://www.suse.com/security/cve/CVE-2024-38388.html * https://www.suse.com/security/cve/CVE-2024-38390.html * https://www.suse.com/security/cve/CVE-2024-38540.html * https://www.suse.com/security/cve/CVE-2024-38541.html * https://www.suse.com/security/cve/CVE-2024-38544.html * https://www.suse.com/security/cve/CVE-2024-38545.html * https://www.suse.com/security/cve/CVE-2024-38546.html * https://www.suse.com/security/cve/CVE-2024-38547.html * https://www.suse.com/security/cve/CVE-2024-38548.html * https://www.suse.com/security/cve/CVE-2024-38549.html * https://www.suse.com/security/cve/CVE-2024-38550.html * https://www.suse.com/security/cve/CVE-2024-38552.html * https://www.suse.com/security/cve/CVE-2024-38553.html * https://www.suse.com/security/cve/CVE-2024-38555.html * https://www.suse.com/security/cve/CVE-2024-38556.html * https://www.suse.com/security/cve/CVE-2024-38557.html * https://www.suse.com/security/cve/CVE-2024-38559.html * https://www.suse.com/security/cve/CVE-2024-38560.html * https://www.suse.com/security/cve/CVE-2024-38564.html * https://www.suse.com/security/cve/CVE-2024-38565.html * https://www.suse.com/security/cve/CVE-2024-38567.html * https://www.suse.com/security/cve/CVE-2024-38568.html *https://www.suse.com/security/cve/CVE-2024-38571.html * https://www.suse.com/security/cve/CVE-2024-38573.html * https://www.suse.com/security/cve/CVE-2024-38578.html * https://www.suse.com/security/cve/CVE-2024-38579.html * https://www.suse.com/security/cve/CVE-2024-38580.html * https://www.suse.com/security/cve/CVE-2024-38581.html * https://www.suse.com/security/cve/CVE-2024-38582.html * https://www.suse.com/security/cve/CVE-2024-38583.html * https://www.suse.com/security/cve/CVE-2024-38587.html * https://www.suse.com/security/cve/CVE-2024-38590.html * https://www.suse.com/security/cve/CVE-2024-38591.html * https://www.suse.com/security/cve/CVE-2024-38594.html * https://www.suse.com/security/cve/CVE-2024-38597.html * https://www.suse.com/security/cve/CVE-2024-38599.html * https://www.suse.com/security/cve/CVE-2024-38600.html * https://www.suse.com/security/cve/CVE-2024-38601.html * https://www.suse.com/security/cve/CVE-2024-38603.html * https://www.suse.com/security/cve/CVE-2024-38605.html * https://www.suse.com/security/cve/CVE-2024-38608.html * https://www.suse.com/security/cve/CVE-2024-38616.html * https://www.suse.com/security/cve/CVE-2024-38618.html * https://www.suse.com/security/cve/CVE-2024-38619.html * https://www.suse.com/security/cve/CVE-2024-38621.html * https://www.suse.com/security/cve/CVE-2024-38627.html * https://www.suse.com/security/cve/CVE-2024-38630.html * https://www.suse.com/security/cve/CVE-2024-38633.html * https://www.suse.com/security/cve/CVE-2024-38634.html * https://www.suse.com/security/cve/CVE-2024-38635.html * https://www.suse.com/security/cve/CVE-2024-38659.html * https://www.suse.com/security/cve/CVE-2024-38661.html * https://www.suse.com/security/cve/CVE-2024-38780.html * https://www.suse.com/security/cve/CVE-2024-39301.html * https://www.suse.com/security/cve/CVE-2024-39468.html * https://www.suse.com/security/cve/CVE-2024-39469.html * https://www.suse.com/security/cve/CVE-2024-39471.html *https://bugzilla.suse.com/show_bug.cgi?id=1156395 * https://bugzilla.suse.com/show_bug.cgi?id=1190336 * https://bugzilla.suse.com/show_bug.cgi?id=1191958 * https://bugzilla.suse.com/show_bug.cgi?id=1193883 * https://bugzilla.suse.com/show_bug.cgi?id=1194826 * https://bugzilla.suse.com/show_bug.cgi?id=1195065 * https://bugzilla.suse.com/show_bug.cgi?id=1195254 * https://bugzilla.suse.com/show_bug.cgi?id=1195341 * https://bugzilla.suse.com/show_bug.cgi?id=1195349 * https://bugzilla.suse.com/show_bug.cgi?id=1195775 * https://bugzilla.suse.com/show_bug.cgi?id=1196746 * https://bugzilla.suse.com/show_bug.cgi?id=1197915 * https://bugzilla.suse.com/show_bug.cgi?id=1198014 * https://bugzilla.suse.com/show_bug.cgi?id=1199295 * https://bugzilla.suse.com/show_bug.cgi?id=1202767 * https://bugzilla.suse.com/show_bug.cgi?id=1202780 * https://bugzilla.suse.com/show_bug.cgi?id=1205205 * https://bugzilla.suse.com/show_bug.cgi?id=1207361 * https://bugzilla.suse.com/show_bug.cgi?id=1217912 * https://bugzilla.suse.com/show_bug.cgi?id=1218148 * https://bugzilla.suse.com/show_bug.cgi?id=1218570 * https://bugzilla.suse.com/show_bug.cgi?id=1218820 * https://bugzilla.suse.com/show_bug.cgi?id=1219224 * https://bugzilla.suse.com/show_bug.cgi?id=1219633 * https://bugzilla.suse.com/show_bug.cgi?id=1219847 * https://bugzilla.suse.com/show_bug.cgi?id=1220368 * https://bugzilla.suse.com/show_bug.cgi?id=1220812 * https://bugzilla.suse.com/show_bug.cgi?id=1220958 * https://bugzilla.suse.com/show_bug.cgi?id=1221086 * https://bugzilla.suse.com/show_bug.cgi?id=1221282 * https://bugzilla.suse.com/show_bug.cgi?id=1221958 * https://bugzilla.suse.com/show_bug.cgi?id=1222015 * https://bugzilla.suse.com/show_bug.cgi?id=1222072 * https://bugzilla.suse.com/show_bug.cgi?id=1222080 * https://bugzilla.suse.com/show_bug.cgi?id=1222241 * https://bugzilla.suse.com/show_bug.cgi?id=1222254 * https://bugzilla.suse.com/show_bug.cgi?id=1222364 *https://bugzilla.suse.com/show_bug.cgi?id=1222893 * https://bugzilla.suse.com/show_bug.cgi?id=1223013 * https://bugzilla.suse.com/show_bug.cgi?id=1223018 * https://bugzilla.suse.com/show_bug.cgi?id=1223265 * https://bugzilla.suse.com/show_bug.cgi?id=1223384 * https://bugzilla.suse.com/show_bug.cgi?id=1223641 * https://bugzilla.suse.com/show_bug.cgi?id=1224020 * https://bugzilla.suse.com/show_bug.cgi?id=1224331 * https://bugzilla.suse.com/show_bug.cgi?id=1224488 * https://bugzilla.suse.com/show_bug.cgi?id=1224497 * https://bugzilla.suse.com/show_bug.cgi?id=1224498 * https://bugzilla.suse.com/show_bug.cgi?id=1224504 * https://bugzilla.suse.com/show_bug.cgi?id=1224520 * https://bugzilla.suse.com/show_bug.cgi?id=1224539 * https://bugzilla.suse.com/show_bug.cgi?id=1224540 * https://bugzilla.suse.com/show_bug.cgi?id=1224552 * https://bugzilla.suse.com/show_bug.cgi?id=1224583 * https://bugzilla.suse.com/show_bug.cgi?id=1224588 * https://bugzilla.suse.com/show_bug.cgi?id=1224602 * https://bugzilla.suse.com/show_bug.cgi?id=1224603 * https://bugzilla.suse.com/show_bug.cgi?id=1224605 * https://bugzilla.suse.com/show_bug.cgi?id=1224612 * https://bugzilla.suse.com/show_bug.cgi?id=1224614 * https://bugzilla.suse.com/show_bug.cgi?id=1224619 * https://bugzilla.suse.com/show_bug.cgi?id=1224661 * https://bugzilla.suse.com/show_bug.cgi?id=1224662 * https://bugzilla.suse.com/show_bug.cgi?id=1224670 * https://bugzilla.suse.com/show_bug.cgi?id=1224671 * https://bugzilla.suse.com/show_bug.cgi?id=1224674 * https://bugzilla.suse.com/show_bug.cgi?id=1224677 * https://bugzilla.suse.com/show_bug.cgi?id=1224679 * https://bugzilla.suse.com/show_bug.cgi?id=1224696 * https://bugzilla.suse.com/show_bug.cgi?id=1224703 * https://bugzilla.suse.com/show_bug.cgi?id=1224712 * https://bugzilla.suse.com/show_bug.cgi?id=1224716 * https://bugzilla.suse.com/show_bug.cgi?id=1224719 * https://bugzilla.suse.com/show_bug.cgi?id=1224735 *https://bugzilla.suse.com/show_bug.cgi?id=1224749 * https://bugzilla.suse.com/show_bug.cgi?id=1224764 * https://bugzilla.suse.com/show_bug.cgi?id=1224765 * https://bugzilla.suse.com/show_bug.cgi?id=1224766 * https://bugzilla.suse.com/show_bug.cgi?id=1224935 * https://bugzilla.suse.com/show_bug.cgi?id=1224946 * https://bugzilla.suse.com/show_bug.cgi?id=1224951 * https://bugzilla.suse.com/show_bug.cgi?id=1225050 * https://bugzilla.suse.com/show_bug.cgi?id=1225098 * https://bugzilla.suse.com/show_bug.cgi?id=1225105 * https://bugzilla.suse.com/show_bug.cgi?id=1225300 * https://bugzilla.suse.com/show_bug.cgi?id=1225389 * https://bugzilla.suse.com/show_bug.cgi?id=1225391 * https://bugzilla.suse.com/show_bug.cgi?id=1225419 * https://bugzilla.suse.com/show_bug.cgi?id=1225426 * https://bugzilla.suse.com/show_bug.cgi?id=1225448 * https://bugzilla.suse.com/show_bug.cgi?id=1225452 * https://bugzilla.suse.com/show_bug.cgi?id=1225467 * https://bugzilla.suse.com/show_bug.cgi?id=1225475 * https://bugzilla.suse.com/show_bug.cgi?id=1225484 * https://bugzilla.suse.com/show_bug.cgi?id=1225487 * https://bugzilla.suse.com/show_bug.cgi?id=1225514 * https://bugzilla.suse.com/show_bug.cgi?id=1225518 * https://bugzilla.suse.com/show_bug.cgi?id=1225535 * https://bugzilla.suse.com/show_bug.cgi?id=1225585 * https://bugzilla.suse.com/show_bug.cgi?id=1225602 * https://bugzilla.suse.com/show_bug.cgi?id=1225611 * https://bugzilla.suse.com/show_bug.cgi?id=1225681 * https://bugzilla.suse.com/show_bug.cgi?id=1225692 * https://bugzilla.suse.com/show_bug.cgi?id=1225698 * https://bugzilla.suse.com/show_bug.cgi?id=1225699 * https://bugzilla.suse.com/show_bug.cgi?id=1225704 * https://bugzilla.suse.com/show_bug.cgi?id=1225714 * https://bugzilla.suse.com/show_bug.cgi?id=1225726 * https://bugzilla.suse.com/show_bug.cgi?id=1225732 * https://bugzilla.suse.com/show_bug.cgi?id=1225737 * https://bugzilla.suse.com/show_bug.cgi?id=1225749 *https://bugzilla.suse.com/show_bug.cgi?id=1225758 * https://bugzilla.suse.com/show_bug.cgi?id=1225759 * https://bugzilla.suse.com/show_bug.cgi?id=1225760 * https://bugzilla.suse.com/show_bug.cgi?id=1225767 * https://bugzilla.suse.com/show_bug.cgi?id=1225770 * https://bugzilla.suse.com/show_bug.cgi?id=1225823 * https://bugzilla.suse.com/show_bug.cgi?id=1225834 * https://bugzilla.suse.com/show_bug.cgi?id=1225840 * https://bugzilla.suse.com/show_bug.cgi?id=1225866 * https://bugzilla.suse.com/show_bug.cgi?id=1225872 * https://bugzilla.suse.com/show_bug.cgi?id=1225894 * https://bugzilla.suse.com/show_bug.cgi?id=1225945 * https://bugzilla.suse.com/show_bug.cgi?id=1226022 * https://bugzilla.suse.com/show_bug.cgi?id=1226131 * https://bugzilla.suse.com/show_bug.cgi?id=1226145 * https://bugzilla.suse.com/show_bug.cgi?id=1226149 * https://bugzilla.suse.com/show_bug.cgi?id=1226155 * https://bugzilla.suse.com/show_bug.cgi?id=1226211 * https://bugzilla.suse.com/show_bug.cgi?id=1226212 * https://bugzilla.suse.com/show_bug.cgi?id=1226226 * https://bugzilla.suse.com/show_bug.cgi?id=1226514 * https://bugzilla.suse.com/show_bug.cgi?id=1226520 * https://bugzilla.suse.com/show_bug.cgi?id=1226537 * https://bugzilla.suse.com/show_bug.cgi?id=1226538 * https://bugzilla.suse.com/show_bug.cgi?id=1226539 * https://bugzilla.suse.com/show_bug.cgi?id=1226550 * https://bugzilla.suse.com/show_bug.cgi?id=1226552 * https://bugzilla.suse.com/show_bug.cgi?id=1226553 * https://bugzilla.suse.com/show_bug.cgi?id=1226554 * https://bugzilla.suse.com/show_bug.cgi?id=1226556 * https://bugzilla.suse.com/show_bug.cgi?id=1226557 * https://bugzilla.suse.com/show_bug.cgi?id=1226558 * https://bugzilla.suse.com/show_bug.cgi?id=1226559 * https://bugzilla.suse.com/show_bug.cgi?id=1226561 * https://bugzilla.suse.com/show_bug.cgi?id=1226562 * https://bugzilla.suse.com/show_bug.cgi?id=1226563 * https://bugzilla.suse.com/show_bug.cgi?id=1226564 *https://bugzilla.suse.com/show_bug.cgi?id=1226566 * https://bugzilla.suse.com/show_bug.cgi?id=1226567 * https://bugzilla.suse.com/show_bug.cgi?id=1226569 * https://bugzilla.suse.com/show_bug.cgi?id=1226572 * https://bugzilla.suse.com/show_bug.cgi?id=1226575 * https://bugzilla.suse.com/show_bug.cgi?id=1226576 * https://bugzilla.suse.com/show_bug.cgi?id=1226577 * https://bugzilla.suse.com/show_bug.cgi?id=1226579 * https://bugzilla.suse.com/show_bug.cgi?id=1226580 * https://bugzilla.suse.com/show_bug.cgi?id=1226581 * https://bugzilla.suse.com/show_bug.cgi?id=1226582 * https://bugzilla.suse.com/show_bug.cgi?id=1226583 * https://bugzilla.suse.com/show_bug.cgi?id=1226585 * https://bugzilla.suse.com/show_bug.cgi?id=1226587 * https://bugzilla.suse.com/show_bug.cgi?id=1226588 * https://bugzilla.suse.com/show_bug.cgi?id=1226593 * https://bugzilla.suse.com/show_bug.cgi?id=1226595 * https://bugzilla.suse.com/show_bug.cgi?id=1226597 * https://bugzilla.suse.com/show_bug.cgi?id=1226601 * https://bugzilla.suse.com/show_bug.cgi?id=1226602 * https://bugzilla.suse.com/show_bug.cgi?id=1226603 * https://bugzilla.suse.com/show_bug.cgi?id=1226607 * https://bugzilla.suse.com/show_bug.cgi?id=1226610 * https://bugzilla.suse.com/show_bug.cgi?id=1226614 * https://bugzilla.suse.com/show_bug.cgi?id=1226616 * https://bugzilla.suse.com/show_bug.cgi?id=1226617 * https://bugzilla.suse.com/show_bug.cgi?id=1226618 * https://bugzilla.suse.com/show_bug.cgi?id=1226619 * https://bugzilla.suse.com/show_bug.cgi?id=1226621 * https://bugzilla.suse.com/show_bug.cgi?id=1226622 * https://bugzilla.suse.com/show_bug.cgi?id=1226624 * https://bugzilla.suse.com/show_bug.cgi?id=1226626 * https://bugzilla.suse.com/show_bug.cgi?id=1226628 * https://bugzilla.suse.com/show_bug.cgi?id=1226629 * https://bugzilla.suse.com/show_bug.cgi?id=1226632 * https://bugzilla.suse.com/show_bug.cgi?id=1226633 * https://bugzilla.suse.com/show_bug.cgi?id=1226634 *https://bugzilla.suse.com/show_bug.cgi?id=1226637 * https://bugzilla.suse.com/show_bug.cgi?id=1226643 * https://bugzilla.suse.com/show_bug.cgi?id=1226644 * https://bugzilla.suse.com/show_bug.cgi?id=1226645 * https://bugzilla.suse.com/show_bug.cgi?id=1226647 * https://bugzilla.suse.com/show_bug.cgi?id=1226650 * https://bugzilla.suse.com/show_bug.cgi?id=1226653 * https://bugzilla.suse.com/show_bug.cgi?id=1226657 * https://bugzilla.suse.com/show_bug.cgi?id=1226658 * https://bugzilla.suse.com/show_bug.cgi?id=1226669 * https://bugzilla.suse.com/show_bug.cgi?id=1226670 * https://bugzilla.suse.com/show_bug.cgi?id=1226672 * https://bugzilla.suse.com/show_bug.cgi?id=1226673 * https://bugzilla.suse.com/show_bug.cgi?id=1226674 * https://bugzilla.suse.com/show_bug.cgi?id=1226675 * https://bugzilla.suse.com/show_bug.cgi?id=1226678 * https://bugzilla.suse.com/show_bug.cgi?id=1226679 * https://bugzilla.suse.com/show_bug.cgi?id=1226683 * https://bugzilla.suse.com/show_bug.cgi?id=1226685 * https://bugzilla.suse.com/show_bug.cgi?id=1226686 * https://bugzilla.suse.com/show_bug.cgi?id=1226690 * https://bugzilla.suse.com/show_bug.cgi?id=1226691 * https://bugzilla.suse.com/show_bug.cgi?id=1226692 * https://bugzilla.suse.com/show_bug.cgi?id=1226693 * https://bugzilla.suse.com/show_bug.cgi?id=1226696 * https://bugzilla.suse.com/show_bug.cgi?id=1226697 * https://bugzilla.suse.com/show_bug.cgi?id=1226698 * https://bugzilla.suse.com/show_bug.cgi?id=1226699 * https://bugzilla.suse.com/show_bug.cgi?id=1226701 * https://bugzilla.suse.com/show_bug.cgi?id=1226702 * https://bugzilla.suse.com/show_bug.cgi?id=1226703 * https://bugzilla.suse.com/show_bug.cgi?id=1226704 * https://bugzilla.suse.com/show_bug.cgi?id=1226705 * https://bugzilla.suse.com/show_bug.cgi?id=1226706 * https://bugzilla.suse.com/show_bug.cgi?id=1226708 * https://bugzilla.suse.com/show_bug.cgi?id=1226709 * https://bugzilla.suse.com/show_bug.cgi?id=1226710 *https://bugzilla.suse.com/show_bug.cgi?id=1226711 * https://bugzilla.suse.com/show_bug.cgi?id=1226712 * https://bugzilla.suse.com/show_bug.cgi?id=1226713 * https://bugzilla.suse.com/show_bug.cgi?id=1226715 * https://bugzilla.suse.com/show_bug.cgi?id=1226716 * https://bugzilla.suse.com/show_bug.cgi?id=1226718 * https://bugzilla.suse.com/show_bug.cgi?id=1226719 * https://bugzilla.suse.com/show_bug.cgi?id=1226720 * https://bugzilla.suse.com/show_bug.cgi?id=1226721 * https://bugzilla.suse.com/show_bug.cgi?id=1226730 * https://bugzilla.suse.com/show_bug.cgi?id=1226732 * https://bugzilla.suse.com/show_bug.cgi?id=1226734 * https://bugzilla.suse.com/show_bug.cgi?id=1226735 * https://bugzilla.suse.com/show_bug.cgi?id=1226737 * https://bugzilla.suse.com/show_bug.cgi?id=1226738 * https://bugzilla.suse.com/show_bug.cgi?id=1226739 * https://bugzilla.suse.com/show_bug.cgi?id=1226740 * https://bugzilla.suse.com/show_bug.cgi?id=1226744 * https://bugzilla.suse.com/show_bug.cgi?id=1226746 * https://bugzilla.suse.com/show_bug.cgi?id=1226747 * https://bugzilla.suse.com/show_bug.cgi?id=1226749 * https://bugzilla.suse.com/show_bug.cgi?id=1226754 * https://bugzilla.suse.com/show_bug.cgi?id=1226762 * https://bugzilla.suse.com/show_bug.cgi?id=1226764 * https://bugzilla.suse.com/show_bug.cgi?id=1226767 * https://bugzilla.suse.com/show_bug.cgi?id=1226768 * https://bugzilla.suse.com/show_bug.cgi?id=1226769 * https://bugzilla.suse.com/show_bug.cgi?id=1226771 * https://bugzilla.suse.com/show_bug.cgi?id=1226774 * https://bugzilla.suse.com/show_bug.cgi?id=1226777 * https://bugzilla.suse.com/show_bug.cgi?id=1226780 * https://bugzilla.suse.com/show_bug.cgi?id=1226781 * https://bugzilla.suse.com/show_bug.cgi?id=1226785 * https://bugzilla.suse.com/show_bug.cgi?id=1226786 * https://bugzilla.suse.com/show_bug.cgi?id=1226789 * https://bugzilla.suse.com/show_bug.cgi?id=1226791 * https://bugzilla.suse.com/show_bug.cgi?id=1226839 *https://bugzilla.suse.com/show_bug.cgi?id=1226840 * https://bugzilla.suse.com/show_bug.cgi?id=1226841 * https://bugzilla.suse.com/show_bug.cgi?id=1226842 * https://bugzilla.suse.com/show_bug.cgi?id=1226848 * https://bugzilla.suse.com/show_bug.cgi?id=1226852 * https://bugzilla.suse.com/show_bug.cgi?id=1226857 * https://bugzilla.suse.com/show_bug.cgi?id=1226861 * https://bugzilla.suse.com/show_bug.cgi?id=1226863 * https://bugzilla.suse.com/show_bug.cgi?id=1226864 * https://bugzilla.suse.com/show_bug.cgi?id=1226867 * https://bugzilla.suse.com/show_bug.cgi?id=1226868 * https://bugzilla.suse.com/show_bug.cgi?id=1226876 * https://bugzilla.suse.com/show_bug.cgi?id=1226878 * https://bugzilla.suse.com/show_bug.cgi?id=1226883 * https://bugzilla.suse.com/show_bug.cgi?id=1226886 * https://bugzilla.suse.com/show_bug.cgi?id=1226890 * https://bugzilla.suse.com/show_bug.cgi?id=1226891 * https://bugzilla.suse.com/show_bug.cgi?id=1226895 * https://bugzilla.suse.com/show_bug.cgi?id=1226908 * https://bugzilla.suse.com/show_bug.cgi?id=1226915 * https://bugzilla.suse.com/show_bug.cgi?id=1226928 * https://bugzilla.suse.com/show_bug.cgi?id=1226948 * https://bugzilla.suse.com/show_bug.cgi?id=1226949 * https://bugzilla.suse.com/show_bug.cgi?id=1226950 * https://bugzilla.suse.com/show_bug.cgi?id=1226953 * https://bugzilla.suse.com/show_bug.cgi?id=1226962 * https://bugzilla.suse.com/show_bug.cgi?id=1226976 * https://bugzilla.suse.com/show_bug.cgi?id=1226992 * https://bugzilla.suse.com/show_bug.cgi?id=1226994 * https://bugzilla.suse.com/show_bug.cgi?id=1226996 * https://bugzilla.suse.com/show_bug.cgi?id=1227066 * https://bugzilla.suse.com/show_bug.cgi?id=1227096 * https://bugzilla.suse.com/show_bug.cgi?id=1227101 * https://bugzilla.suse.com/show_bug.cgi?id=1227103 * https://bugzilla.suse.com/show_bug.cgi?id=1227274 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-8491&page_caps=&user_role= *https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-8570&page_caps=&user_role= * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-8690&page_caps=&user_role= . SUSE releases critical security enhancements for Linux Kernel, resolving significant vulnerabilities and applying essential updates in the most recent patches.. SUSE Linux, Kernel Security, Bugfix Updates, Security Advisories. . Severity: Important. LinuxSecurity.com Team
Jul 09, 2024
•Important
SuSE
202
security advisoryprivilege escalationDoSopenSUSE 15 SP4: 2023:3964-1 Important: Kernel Security Fixes - DoS
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed:. # Security update for the Linux Kernel Announcement ID: SUSE-SU-2023:3964-1 Rating: important References: * #1023051 * #1120059 * #1177719 * #1188885 * #1193629 * #1194869 * #1205462 * #1208902 * #1208949 * #1209284 * #1209799 * #1210048 * #1210448 * #1212091 * #1212142 * #1212526 * #1212857 * #1212873 * #1213026 * #1213123 * #1213546 * #1213580 * #1213601 * #1213666 * #1213757 * #1213759 * #1213916 * #1213921 * #1213927 * #1213946 * #1213968 * #1213970 * #1213971 * #1214000 * #1214019 * #1214120 * #1214149 * #1214180 * #1214238 * #1214285 * #1214297 * #1214299 * #1214350 * #1214368 * #1214370 * #1214371 * #1214372 * #1214380 * #1214386 * #1214392 * #1214393 * #1214397 * #1214428 * #1214451 * #1214635 * #1214659 * #1214661 * #1214729 * #1214742 * #1214743 * #1214756 * #1215522 * #1215523 * #1215552 * #1215553 * PED-4579 * PED-4759 * PED-4927 * PED-4929 * PED-5738 * PED-6003 * PED-6004 Cross-References: * CVE-2023-2007 * CVE-2023-20588 * CVE-2023-34319 * CVE-2023-3610 * CVE-2023-37453 * CVE-2023-3772 * CVE-2023-3863 * CVE-2023-4128 * CVE-2023-4133 * CVE-2023-4134 * CVE-2023-4147 * CVE-2023-4194 * CVE-2023-4273 * CVE-2023-4387 * CVE-2023-4459 * CVE-2023-4569 CVSS scores: * CVE-2023-2007 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2023-2007 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-20588 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N * CVE-2023-20588 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-34319 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2023-34319 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3610 ( SUSE ): 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3610 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-37453 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-37453 ( NVD ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-3772 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-3772 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-3863 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3863 ( NVD ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-4128 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-4128 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-4133 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-4133 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-4134 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-4147 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-4147 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-4194 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-4194 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2023-4273 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-4273 ( NVD ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N * CVE-2023-4387 ( SUSE ): 6.6 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-4387 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-4459 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-4459 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-4569 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-4569 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise LivePatching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Real Time Module 15-SP4 An update that solves 16 vulnerabilities, contains seven features and has 49 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: * CVE-2023-2007: Fixed a flaw in the DPT I2O Controller driver that could allow an attacker to escalate privileges and execute arbitrary code in the context of the kernel (bsc#1210448). * CVE-2023-20588: Fixed a division-by-zero error on some AMD processors that can potentially return speculative data resulting in loss of confidentiality (bsc#1213927). * CVE-2023-34319: Fixed buffer overrun triggered by unusual packet in xen/netback (XSA-432) (bsc#1213546). * CVE-2023-3610: Fixed use-after-free vulnerability in nf_tables can be exploited to achieve local privilege escalation (bsc#1213580). * CVE-2023-37453: Fixed oversight in SuperSpeed initialization (bsc#1213123). * CVE-2023-3772: Fixed a flaw in XFRM subsystem that may have allowed a malicious user with CAP_NET_ADMIN privileges to directly dereference a NULL pointer leading to a possible kernel crash and denial of service (bsc#1213666). * CVE-2023-3863: Fixed a use-after-free flaw was found in nfc_llcp_find_local that allowed a local user with special privileges to impact a kernel information leak issue (bsc#1213601). * CVE-2023-4128: Fixed a use-after-free flaw in net/sched/cls_fw.c that allowed a local attacker to perform a local privilege escalation due to incorrect handling of the existing filter, leading to a kernel information leak issue (bsc#1214149). *CVE-2023-4133: Fixed use after free bugs caused by circular dependency problem in cxgb4 (bsc#1213970). * CVE-2023-4134: Fixed use-after-free in cyttsp4_watchdog_work() (bsc#1213971). * CVE-2023-4147: Fixed use-after-free in nf_tables_newrule (bsc#1213968). * CVE-2023-4194: Fixed a type confusion in net tun_chr_open() (bsc#1214019). * CVE-2023-4273: Fixed a flaw in the exFAT driver of the Linux kernel that alloawed a local privileged attacker to overflow the kernel stack (bsc#1214120). * CVE-2023-4387: Fixed use-after-free flaw in vmxnet3_rq_alloc_rx_buf that could allow a local attacker to crash the system due to a double-free (bsc#1214350). * CVE-2023-4459: Fixed a NULL pointer dereference flaw in vmxnet3_rq_cleanup that may have allowed a local attacker with normal user privilege to cause a denial of service (bsc#1214451). * CVE-2023-4569: Fixed information leak in nft_set_catchall_flush in net/netfilter/nf_tables_api.c (bsc#1214729). The following non-security bugs were fixed: * Drop amdgpu patch causing spamming (bsc#1215523) * acpi: processor: perflib: avoid updating frequency qos unnecessarily (git- fixes). * acpi: processor: perflib: use the "no limit" frequency qos (git-fixes). * acpi: x86: s2idle: fix a logic error parsing amd constraints table (git- fixes). * alsa: ac97: fix possible error value of *rac97 (git-fixes). * alsa: hda/cs8409: support new dell dolphin variants (git-fixes). * alsa: hda/realtek - remodified 3k pull low procedure (git-fixes). * alsa: hda/realtek: add quirk for hp victus 16-d1xxx to enable mute led (git- fixes). * alsa: hda/realtek: add quirk for mute leds on hp envy x360 15-eu0xxx (git- fixes). * alsa: hda/realtek: add quirks for hp g11 laptops (git-fixes). * alsa: hda/realtek: switch dell oasis models to use spi (git-fixes). * alsa: pcm: fix missing fixup call in compat hw_refine ioctl (git-fixes). * alsa: usb-audio: add support for mythware xa001au capture and playback interfaces(git-fixes). * alsa: usb-audio: fix init call orders for uac1 (git-fixes). * alsa: ymfpci: fix the missing snd_card_free() call at probe error (git- fixes). * amba: bus: fix refcount leak (git-fixes). * arm64: dts: imx8mn-var-som: add missing pull-up for onboard phy reset pinmux (git-fixes). * arm64: dts: qcom: qrb5165-rb5: fix thermal zone conflict (git-fixes). * arm64: dts: rockchip: disable hs400 for emmc on rock pi 4 (git-fixes). * arm: dts: imx6dl: prtrvt, prtvt7, prti6q, prtwd2: fix usb related warnings (git-fixes). * arm: dts: imx6sll: fixup of operating points (git-fixes). * arm: spear: do not use timer namespace for timer_shutdown() function (bsc#1213970). * asoc: lower "no backend dais enabled for ... port" log severity (git-fixes). * asoc: meson: axg-tdm-formatter: fix channel slot allocation (git-fixes). * asoc: rt5665: add missed regulator_bulk_disable (git-fixes). * asoc: sof: intel: fix soundwire/hdaudio mutual exclusion (git-fixes). * asoc: stac9766: fix build errors with regmap_ac97 (git-fixes). * asoc: tegra: fix sfc conversion for few rates (git-fixes). * audit: fix possible soft lockup in __audit_inode_child() (git-fixes). * backlight/bd6107: compare against struct fb_info.device (git-fixes). * backlight/gpio_backlight: compare against struct fb_info.device (git-fixes). * backlight/lv5207lp: compare against struct fb_info.device (git-fixes). * batman-adv: do not get eth header before batadv_check_management_packet (git-fixes). * batman-adv: do not increase mtu when set by user (git-fixes). * batman-adv: fix batadv_v_ogm_aggr_send memory leak (git-fixes). * batman-adv: fix tt global entry leak when client roamed back (git-fixes). * batman-adv: hold rtnl lock during mtu update via netlink (git-fixes). * batman-adv: trigger events for auto adjusted mtu (git-fixes). * bluetooth: btusb: add mt7922 bluetooth id for the asus ally (git-fixes). * bluetooth: btusb: do not call kfree_skb() under spin_lock_irqsave() (git- fixes). * bluetooth: fix potential use-after-free when clear keys (git-fixes). * bluetooth: l2cap: fix use-after-free (git-fixes). * bluetooth: l2cap: fix use-after-free in l2cap_sock_ready_cb (git-fixes). * bluetooth: nokia: fix value check in nokia_bluetooth_serdev_probe() (git- fixes). * bluetooth: remove unused declaration amp_read_loc_info() (git-fixes). * bnx2x: fix page fault following eeh recovery (bsc#1214299). * bpf: disable preemption in bpf_event_output (git-fixes). * bus: ti-sysc: fix build warning for 64-bit build (git-fixes). * bus: ti-sysc: fix cast to enum warning (git-fixes). * bus: ti-sysc: flush posted write on enable before reset (git-fixes). * can: gs_usb: gs_usb_receive_bulk_callback(): count rx overflow errors also in case of oom (git-fixes). * ceph: defer stopping mdsc delayed_work (bsc#1214392). * ceph: do not check for quotas on mds stray dirs (bsc#1214238). * ceph: never send metrics if disable_send_metrics is set (bsc#1214180). * check-for-config-changes: ignore builtin_return_address_strips_pac (bsc#1214380). gcc7 on sle 15 does not support this while later gcc does. * cifs: add missing return value check for cifs_sb_tlink (bsc#1193629). * cifs: allow dumping keys for directories too (bsc#1193629). * cifs: fix mid leak during reconnection after timeout threshold (git-fixes). * cifs: if deferred close is disabled then close files immediately (git- fixes). * cifs: is_network_name_deleted should return a bool (bsc#1193629). * cifs: update internal module version number for cifs.ko (bsc#1193629). * clk: fix slab-out-of-bounds error in devm_clk_release() (git-fixes). * clk: fix undefined reference to `clk_rate_exclusive_{get,put}' (git-fixes). * clk: imx8mp: fix sai4 clock (git-fixes). * clk: imx: composite-8m: fix clock pauses when set_rate would be a no-op (git-fixes). * clk: imx: pll14xx: dynamically configure pll for 393216000/361267200hz (git- fixes). * clk: qcom: camcc-sc7180: fix async resume duringprobe (git-fixes). * clk: qcom: gcc-mdm9615: use proper parent for pll0_vote clock (git-fixes). * clk: qcom: gcc-sc7180: fix up gcc_sdcc2_apps_clk_src (git-fixes). * clk: qcom: gcc-sm8250: fix gcc_sdcc2_apps_clk_src (git-fixes). * clk: sunxi-ng: modify mismatched function name (git-fixes). * clocksource/drivers/arm_arch_timer: do not use timer namespace for timer_shutdown() function (bsc#1213970). * clocksource/drivers/sp804: do not use timer namespace for timer_shutdown() function (bsc#1213970). * config_nvme_verbose_errors=y gone with a82baa8083b * config_printk_safe_log_buf_shift=13 gone with 7e152d55123 * cpu/smt: allow enabling partial smt states via sysfs (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588). * cpu/smt: create topology_smt_thread_allowed() (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588). * cpu/smt: move smt prototypes into cpu_smt.h (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588). * cpu/smt: move smt/control simple exit cases earlier (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588). * cpu/smt: remove topology_smt_supported() (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588). * cpu/smt: store the current/max number of threads (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588). * cpufreq: fix the race condition while updating the transition_task of policy (git-fixes). * cpufreq: intel_pstate: adjust balance_performance epp for sapphire rapids (bsc#1214659). * cpufreq: intel_pstate: enable hwp io boost for all servers (bsc#1208949 jsc#ped-6003 jsc#ped-6004). * cpufreq: intel_pstate: fix scaling for hybrid-capable systems with disabled e-cores (bsc#1212526 bsc#1214368 jsc#ped-4927 jsc#ped-4929). * cpufreq: intel_pstate: hybrid: rework hwp calibration (bsc#1212526 bsc#1214368 jsc#ped-4927 jsc#ped-4929). * cpufreq: intel_pstate: hybrid: use known scaling factor for p-cores (bsc#1212526 bsc#1214368 jsc#ped-4927 jsc#ped-4929). * cpufreq: intel_pstate: read all msrs on the target cpu (bsc#1212526 bsc#1214368jsc#ped-4927 jsc#ped-4929). * created new preempt kernel flavor configs are cloned from the respective $arch/default configs. all changed configs appart from config_preempt-> y are a result of dependencies, namely many lock/unlock primitives are no longer inlined in the preempt kernel. tree_rcu has been also changed to preempt_rcu which is the default implementation for preempt kernel. * crypto: caam - fix unchecked return value error (git-fixes). * crypto: stm32 - properly handle pm_runtime_get failing (git-fixes). * dma-buf/sw_sync: avoid recursive lock during fence signal (git-fixes). * dma-buf/sync_file: fix docs syntax (git-fixes). * dmaengine: idxd: modify the dependence of attribute pasid_enabled (git- fixes). * dmaengine: mcf-edma: fix a potential un-allocated memory access (git-fixes). * dmaengine: pl330: return dma_paused when transaction is paused (git-fixes). * dmaengine: ste_dma40: add missing irq check in d40_probe (git-fixes). * docs/process/howto: replace c89 with c11 (bsc#1214756). * docs: kernel-parameters: refer to the correct bitmap function (git-fixes). * docs: networking: replace skb_hwtstamp_tx with skb_tstamp_tx (git-fixes). * docs: printk-formats: fix hex printing of signed values (git-fixes). * documentation: devices.txt: fix minors for ttycpm* (git-fixes). * documentation: devices.txt: remove ttyioc* (git-fixes). * documentation: devices.txt: remove ttysioc* (git-fixes). * driver core: test_async: fix an error code (git-fixes). * drivers: clk: keystone: fix parameter judgment in _of_pll_clk_init() (git- fixes). * drivers: usb: smsusb: fix error handling code in smsusb_init_device (git- fixes). * drm/amd/display: check attr flag before set cursor degamma on dcn3+ (git- fixes). * drm/amd/display: check tg is non-null before checking if enabled (git- fixes). * drm/amd/display: do not wait for mpc idle if tg is disabled (git-fixes). * drm/amd/display: fix access hdcp_workqueue assert (git-fixes). *drm/amd/display: phase3 mst hdcp for multiple displays (git-fixes). * drm/amd/display: save restore hdcp state when display is unplugged from mst hub (git-fixes). * drm/amd/pm: fix variable dereferenced issue in amdgpu_device_attr_create() (git-fixes). * drm/amd: flush any delayed gfxoff on suspend entry (git-fixes). * drm/amdgpu: avoid integer overflow warning in amdgpu_device_resize_fb_bar() (git-fixes). * drm/amdgpu: fix potential fence use-after-free v2 (git-fixes). * drm/amdgpu: install stub fence into potential unused fence pointers (git- fixes). * drm/amdgpu: use rmw accessors for changing lnkctl (git-fixes). * drm/armada: fix off-by-one error in armada_overlay_get_property() (git- fixes). * drm/ast: fix dram init on ast2200 (git-fixes). * drm/atomic-helper: update reference to drm_crtc_force_disable_all() (git- fixes). * drm/bridge: anx7625: drop device lock before drm_helper_hpd_irq_event() (git-fixes). * drm/bridge: fix -wunused-const-variable= warning (git-fixes). * drm/bridge: tc358764: fix debug print parameter order (git-fixes). * drm/etnaviv: fix dumping of active mmu context (git-fixes). * drm/mediatek: fix dereference before null check (git-fixes). * drm/mediatek: fix potential memory leak if vmap() fail (git-fixes). * drm/msm/a2xx: call adreno_gpu_init() earlier (git-fixes). * drm/msm/mdp5: do not leak some plane state (git-fixes). * drm/msm: update dev core dump to not print backwards (git-fixes). * drm/nouveau/disp: revert a null check inside nouveau_connector_get_modes (git-fixes). * drm/nouveau/gr: enable memory loads on helper invocation on all channels (git-fixes). * drm/panel: simple: add missing connector type and pixel format for auo t215hvn01 (git-fixes). * drm/panel: simple: fix auo g121ean01 panel timings according to the docs (git-fixes). * drm/qxl: fix uaf on handle creation (git-fixes). * drm/radeon: use rmw accessors for changing lnkctl (git-fixes). * drm/rockchip: do not spam logs inatomic check (git-fixes). * drm/shmem-helper: reset vma-> vm_ops before calling dma_buf_mmap() (git- fixes). * drm/tegra: dpaux: fix incorrect return value of platform_get_irq (git- fixes). * drm/ttm: check null pointer before accessing when swapping (git-fixes). * drm/ttm: never consider pinned bos for eviction&swap (git-fixes). * drm/vmwgfx: fix shader stage validation (git-fixes). * drm: adv7511: fix low refresh rate register for adv7533/5 (git-fixes). * drm: xlnx: zynqmp_dpsub: add missing check for dma_set_mask (git-fixes). * drop cfg80211 lock fix patches that caused a regression (bsc#1213757) * drop rtsx patch that caused a regression (bsc#1214397,bsc#1214428) * dt-bindings: clock: xlnx,versal-clk: drop select:false (git-fixes). * dt-bindings: clocks: imx8mp: make sai4 a dummy clock (git-fixes). * dt-bindings: crypto: ti,sa2ul: make power-domains conditional (git-fixes). * e1000: fix typos in comments (jsc#ped-5738). * e1000: remove unnecessary use of kmap_atomic() (jsc#ped-5738). * e1000: switch to napi_build_skb() (jsc#ped-5738). * e1000: switch to napi_consume_skb() (jsc#ped-5738). * enable analog devices industrial ethernet phy driver (jsc#ped-4759) * exfat: fix unexpected eof while reading dir (bsc#1214000). * exfat: release s_lock before calling dir_emit() (bsc#1214000). * exfat_iterate(): do not open-code file_inode(file) (bsc#1214000). * fbdev/ep93xx-fb: do not assign to struct fb_info.dev (git-fixes). * fbdev: fix potential oob read in fast_imageblit() (git-fixes). * fbdev: fix sys_imageblit() for arbitrary image widths (git-fixes). * fbdev: improve performance of sys_imageblit() (git-fixes). * fbdev: mmp: fix value check in mmphw_probe() (git-fixes). * file: reinstate f_pos locking optimization for regular files (bsc#1213759). * firmware: arm_scmi: drop of node reference in the transport channel setup (git-fixes). * firmware: cs_dsp: fix new control name check (git-fixes). * firmware: meson_sm: fix to avoid potential nullpointer dereference (git- fixes). * firmware: stratix10-svc: fix an null vs is_err() bug in probe (git-fixes). * fs/sysv: null check to prevent null-ptr-deref bug (git-fixes). * ftrace: fix possible warning on checking all pages used in ftrace_process_locs() (git-fixes). * gpio: mvebu: fix irq domain leak (git-fixes). * gpio: mvebu: make use of devm_pwmchip_add (git-fixes). * gpio: tps68470: make tps68470_gpio_output() always set the initial value (git-fixes). * hid: add quirk for 03f0:464a hp elite presenter mouse (git-fixes). * hid: logitech-dj: fix error handling in logi_dj_recv_switch_to_dj_mode() (git-fixes). * hid: logitech-hidpp: add usb and bluetooth ids for the logitech g915 tkl keyboard (git-fixes). * hid: multitouch: correct devm device reference for hidinput input_dev name (git-fixes). * hid: wacom: remove the battery when the ekr is off (git-fixes). * hwmon: (pmbus/bel-pfe) enable pmbus_skip_status_check for pfe1100 (git- fixes). * hwmon: (tmp513) fix the channel number in tmp51x_is_visible() (git-fixes). * hwpoison: offline support: fix spelling in documentation/abi/ (git-fixes). * hwrng: iproc-rng200 - implement suspend and resume calls (git-fixes). * hwrng: nomadik - keep clock enabled while hwrng is registered (git-fixes). * hwrng: pic32 - use devm_clk_get_enabled (git-fixes). * i2c: bcm-iproc: fix bcm_iproc_i2c_isr deadlock issue (git-fixes). * i2c: delete error messages for failed memory allocations (git-fixes). * i2c: designware: correct length byte validation logic (git-fixes). * i2c: designware: handle invalid smbus block data response length value (git- fixes). * i2c: hisi: only handle the interrupt of the driver's transfer (git-fixes). * i2c: improve size determinations (git-fixes). * i2c: nomadik: remove a useless call in the remove function (git-fixes). * i2c: nomadik: remove unnecessary goto label (git-fixes). * i2c: nomadik: use devm_clk_get_enabled() (git-fixes). * i40e: fix an null vs is_err() bugfor debugfs_create_dir() (git-fixes). * iavf: fix potential races for fdir filters (git-fixes). * ib/hfi1: fix possible panic during hotplug remove (git-fixes) * ib/uverbs: fix an potential error pointer dereference (git-fixes) * ice: fix crash by keep old cfg when update tcs more than queues (git-fixes). * ice: fix max_rate check while configuring tx rate limits (git-fixes). * ice: fix memory management in ice_ethtool_fdir.c (git-fixes). * ice: fix rdma vsi removal during queue rebuild (git-fixes). * iio: adc: ina2xx: avoid null pointer dereference on of device match (git- fixes). * iio: adc: stx104: implement and utilize register structures (git-fixes). * iio: adc: stx104: utilize iomap interface (git-fixes). * iio: cros_ec: fix the allocation size for cros_ec_command (git-fixes). * input: exc3000 - properly stop timer on shutdown (git-fixes). * intel/e1000:fix repeated words in comments (jsc#ped-5738). * intel: remove unused macros (jsc#ped-5738). * iommu/amd: add pci segment support for ivrs_ commands (git-fixes). * iommu/amd: fix compile warning in init code (git-fixes). * iommu/amd: fix ill-formed ivrs_ioapic, ivrs_hpet and ivrs_acpihid options (git-fixes). * iommu/amd: fix ivrs_acpihid cmdline parsing code (git-fixes). * iommu/amd: fix pci device refcount leak in ppr_notifier() (git-fixes). * iommu/amd: use full 64-bit value in build_completion_wait() (git-fixes). * iommu/arm-smmu-v3: check return value after calling platform_get_resource() (git-fixes). * iommu/arm-smmu-v3: fix event handling soft lockup (git-fixes). * iommu/arm-smmu-v3: make default domain type of hisilicon ptt device to identity (git-fixes). * iommu/arm-smmu: fix possible null-ptr-deref in arm_smmu_device_probe() (git- fixes). * iommu/dart: initialize dart_streams_enable (git-fixes). * iommu/dma: fix incorrect error return on iommu deferred attach (git-fixes). * iommu/dma: fix iova map result check bug (git-fixes). * iommu/dma: return error code fromiommu_dma_map_sg() (git-fixes). * iommu/fsl_pamu: fix resource leak in fsl_pamu_probe() (git-fixes). * iommu/io-pgtable-arm-v7s: add a quirk to allow pgtable pa up to 35bit (git- fixes). * iommu/iova: fix module config properly (git-fixes). * iommu/omap: fix buffer overflow in debugfs (git-fixes). * iommu/rockchip: fix permission bits in page table entries v2 (git-fixes). * iommu/sun50i: consider all fault sources for reset (git-fixes). * iommu/sun50i: fix flush size (git-fixes). * iommu/sun50i: fix r/w permission check (git-fixes). * iommu/sun50i: fix reset release (git-fixes). * iommu/sun50i: implement .iotlb_sync_map (git-fixes). * iommu/sun50i: remove iommu_domain_identity (git-fixes). * iommu/vt-d: add rpls to quirk list to skip te disabling (git-fixes). * iommu/vt-d: check correct capability for sagaw determination (git-fixes). * iommu/vt-d: clean up si_domain in the init_dmars() error path (git-fixes). * iommu/vt-d: correctly calculate sagaw value of iommu (git-fixes). * iommu/vt-d: fix kdump kernels boot failure with scalable mode (git-fixes). * iommu/vt-d: fix pci device refcount leak in dmar_dev_scope_init() (git- fixes). * iommu/vt-d: fix pci device refcount leak in has_external_pci() (git-fixes). * iommu/vt-d: preset access bit for iova in fl non-leaf paging entries (git- fixes). * iommu/vt-d: set sre bit only when hardware has srs cap (git-fixes). * ipmi:ssif: add check for kstrdup (git-fixes). * ipmi:ssif: fix a memory leak when scanning for an adapter (git-fixes). * ipmi_si: fix a memleak in try_smi_init() (git-fixes). * jffs2: correct logic when creating a hole in jffs2_write_begin (git-fixes). * kabi/severities: ignore newly added srso mitigation functions * kabi: allow extra bugsints (bsc#1213927). * kbuild: add -wno-shift-negative-value where -wextra is used (bsc#1214756). * kbuild: move to -std=gnu11 (bsc#1214756). * kernel-binary: common dependencies cleanup common dependencies are copied to a subpackage, there is noneed for copying defines or build dependencies there. * kernel-binary: drop code for kerntypes support kerntypes was a suse-specific feature dropped before sle 12. * kunit: make kunit_test_timeout compatible with comment (git-fixes). * kvm: s390: fix sthyi error handling (git-fixes bsc#1214370). * leds: fix bug_on check for led_color_id_multi that is always false (git- fixes). * leds: multicolor: use rounded division when calculating color components (git-fixes). * leds: pwm: fix error code in led_pwm_create_fwnode() (git-fixes). * leds: trigger: tty: do not use led_on/off constants, use led_blink_set_oneshot instead (git-fixes). * leds: turris-omnia: drop unnecessary mutex locking (git-fixes). * lib/test_meminit: allocate pages up to order max_order (git-fixes). * lib/test_meminit: destroy cache in kmem_cache_alloc_bulk() test (git-fixes). * libceph: fix potential hang in ceph_osdc_notify() (bsc#1214393). * md/raid0: factor out helper for mapping and submitting a bio (bsc#1213916). * md/raid0: fix performance regression for large sequential writes (bsc#1213916). * media: ad5820: drop unsupported ad5823 from i2c_ and of_device_id tables (git-fixes). * media: cx24120: add retval check for cx24120_message_send() (git-fixes). * media: dib7000p: fix potential division by zero (git-fixes). * media: dvb-usb: m920x: fix a potential memory leak in m920x_i2c_xfer() (git- fixes). * media: go7007: remove redundant if statement (git-fixes). * media: i2c: ccs: check rules is non-null (git-fixes). * media: i2c: rdacm21: fix uninitialized value (git-fixes). * media: i2c: tvp5150: check return value of devm_kasprintf() (git-fixes). * media: ov2680: add ov2680_fill_format() helper function (git-fixes). * media: ov2680: do not take the lock for try_fmt calls (git-fixes). * media: ov2680: fix ov2680_bayer_order() (git-fixes). * media: ov2680: fix ov2680_set_fmt() which == v4l2_subdev_format_try not working (git-fixes). * media: ov2680: fixregulators being left enabled on ov2680_power_on() errors (git-fixes). * media: ov2680: fix vflip / hflip set functions (git-fixes). * media: ov2680: remove video_v4l2_subdev_api ifdef-s (git-fixes). * media: ov5640: enable mipi interface in ov5640_set_power_mipi() (git-fixes). * media: rkvdec: increase max supported height for h.264 (git-fixes). * media: v4l2-core: fix a potential resource leak in v4l2_fwnode_parse_link() (git-fixes). * media: v4l2-mem2mem: add lock to protect parameter num_rdy (git-fixes). * media: venus: hfi_venus: only consider sys_idle_indicator on v1 (git-fixes). * media: venus: hfi_venus: write to vidc_ctrl_init after unmasking interrupts (git-fixes). * misc: rtsx: judge aspm mode to set petxcfg reg (git-fixes). * mkspec: allow unsupported kmps (bsc#1214386) * mlxsw: pci: add shutdown method in pci driver (git-fixes). * mmc: block: fix in_flight[issue_type] value error (git-fixes). * mmc: moxart: read scr register without changing byte order (git-fixes). * mmc: wbsd: fix double mmc_free_host() in wbsd_init() (git-fixes). * module: avoid allocation if module is already present and ready (bsc#1213921). * module: extract patient module check into helper (bsc#1213921). * module: move check_modinfo() early to early_mod_check() (bsc#1213921). * module: move early sanity checks into a helper (bsc#1213921). * move upstreamed powerpc patches into sorted section * mtd: rawnand: brcmnand: fix crash during the panic_write (git-fixes). * mtd: rawnand: brcmnand: fix mtd oobsize (git-fixes). * mtd: rawnand: brcmnand: fix potential false time out warning (git-fixes). * mtd: rawnand: brcmnand: fix potential out-of-bounds access in oob write (git-fixes). * mtd: rawnand: fsl_upm: fix an off-by one test in fun_exec_op() (git-fixes). * mtd: rawnand: fsmc: handle clk prepare error in fsmc_nand_resume() (git- fixes). * mtd: rawnand: omap_elm: fix incorrect type in assignment (git-fixes). * mtd: rawnand: rockchip: align hwecc vs. rawpage helper layouts (git-fixes). * mtd: rawnand: rockchip: fix oobfree offset and description (git-fixes). * mtd: spi-nor: check bus width while setting qe bit (git-fixes). * mtd: spinand: toshiba: fix ecc_get_status (git-fixes). * n_tty: rename tail to old_tail in n_tty_read() (git-fixes). * net: hns3: fix wrong bw weight of disabled tc issue (git-fixes). * net: ieee802154: at86rf230: stop leaking skb's (git-fixes). * net: mana: fix mana vf unload when hardware is unresponsive (git-fixes). * net: phy: at803x: remove set/get wol callbacks for ar8032 (git-fixes). * net: phy: broadcom: stub c45 read/write for 54810 (git-fixes). * net: phy: fix irq-based wake-on-lan over hibernate / power off (git-fixes). * net: usb: lan78xx: reorder cleanup operations to avoid uaf bugs (git-fixes). * net: usbnet: fix warning in usbnet_start_xmit/usb_submit_urb (git-fixes). * netfs: fix lockdep warning from taking sb_writers whilst holding mmap_lock (bsc#1214742). * netfs: fix missing xas_retry() calls in xarray iteration (bsc#1213946). * netfs: fix parameter of cleanup() (bsc#1214743). * nfsd: remove incorrect check in nfsd4_validate_stateid (git-fixes). * nilfs2: fix use-after-free of nilfs_root in dirtying inodes via iput (git- fixes). * nilfs2: fix warning in mark_buffer_dirty due to discarded buffer reuse (git- fixes). * nvme-rdma: fix potential unbalanced freeze & unfreeze (bsc#1208902). * nvme-tcp: fix potential unbalanced freeze & unfreeze (bsc#1208902). * objtool/x86: fix srso mess (git-fixes). * objtool/x86: fixup frame-pointer vs rethunk (git-fixes). * objtool: union instruction::{call_dest,jump_table} (git-fixes). * old-flavors: drop 2.6 kernels. 2.6 based kernels are eol, upgrading from them is no longer suported. * pci/aspm: avoid link retraining race (git-fixes). * pci/aspm: factor out pcie_wait_for_retrain() (git-fixes). * pci/aspm: return 0 or -etimedout from pcie_retrain_link() (git-fixes). * pci: acpiphp: reassign resources on bridge ifnecessary (git-fixes). * pci: acpiphp: use pci_assign_unassigned_bridge_resources() only for non-root bus (git-fixes). * pci: mark nvidia t4 gpus to avoid bus reset (git-fixes). * pci: meson: remove cast between incompatible function type (git-fixes). * pci: microchip: correct the ded and sec interrupt bit offsets (git-fixes). * pci: microchip: remove cast between incompatible function type (git-fixes). * pci: pciehp: use rmw accessors for changing lnkctl (git-fixes). * pci: rockchip: remove writes to unused registers (git-fixes). * pci: s390: fix use-after-free of pci resources with per-function hotplug (git-fixes). * pci: tegra194: fix possible array out of bounds access (git-fixes). * pcmcia: rsrc_nonstatic: fix memory leak in nonstatic_release_resource_db() (git-fixes). * phy/rockchip: inno-hdmi: do not power on rk3328 post pll on reg write (git- fixes). * phy/rockchip: inno-hdmi: round fractal pixclock in rk3328 recalc_rate (git- fixes). * phy/rockchip: inno-hdmi: use correct vco_div_5 macro on rk3328 (git-fixes). * phy: qcom-snps-femto-v2: keep cfg_ahb_clk enabled during runtime suspend (git-fixes). * phy: qcom-snps-femto-v2: properly enable ref clock (git-fixes). * phy: qcom-snps: correct struct qcom_snps_hsphy kerneldoc (git-fixes). * phy: qcom-snps: use dev_err_probe() to simplify code (git-fixes). * pinctrl: cherryview: fix address_space_handler() argument (git-fixes). * pinctrl: mcp23s08: check return value of devm_kasprintf() (git-fixes). * pinctrl: renesas: rza2: add lock around pinctrl_generic{{add,remove}_group,{add,remove}_function} (git-fixes). * platform/x86: dell-sysman: fix reference leak (git-fixes). * pm / devfreq: fix leak in devfreq_dev_release() (git-fixes). * powerpc/64e: fix kexec build error (bsc#1212091 ltc#199106). * powerpc/iommu: do not set failed sg dma_address to dma_mapping_error (bsc#1212091 ltc#199106). * powerpc/iommu: fix iommu_table_in_use for a small default dma window case (bsc#1212091ltc#199106). * powerpc/iommu: incorrect ddw table is referenced for sr-iov device (bsc#1212091 ltc#199106). * powerpc/iommu: return error code from .map_sg() ops (bsc#1212091 ltc#199106). * powerpc/iommu: tces are incorrectly manipulated with dlpar add/remove of memory (bsc#1212091 ltc#199106). * powerpc/kernel/iommu: add new iommu_table_in_use() helper (bsc#1212091 ltc#199106). * powerpc/kexec: fix build failure from uninitialised variable (bsc#1212091 ltc#199106). * powerpc/mm/altmap: fix altmap boundary check (bsc#1120059 git-fixes). * powerpc/pseries/ddw: do not try direct mapping with persistent memory and one window (bsc#1212091 ltc#199106). * powerpc/pseries/ddw: simplify enable_ddw() (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: add ddw_list_new_entry() helper (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: add ddw_property_create() and refactor enable_ddw() (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: add iommu_pseries_alloc_table() helper (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: add of_node_put() before break (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: allow ddw windows starting at 0x00 (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: check if the default window in use before removing it (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: create huge dma window if no mmio32 is present (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: find existing ddw with given property name (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: make use of ddw for indirect mapping (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: print ibm,query-pe-dma-windows parameters (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: rename "direct window" to "dma window" (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: reorganize iommu_table_setparms*() with new helper (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: replace hard-coded page shift (bsc#1212091 ltc#199106). *powerpc/pseries/iommu: update remove_dma_window() to accept property name (bsc#1212091 ltc#199106). * powerpc/pseries/iommu: use correct vfree for it_map (bsc#1212091 ltc#199106). * powerpc/pseries: add __init attribute to eligible functions (bsc#1212091 ltc#199106). * powerpc/pseries: honour current smt state when dlpar onlining cpus (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588). * powerpc/pseries: initialise cpu hotplug callbacks earlier (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588). * powerpc/rtas: block error injection when locked down (bsc#1023051). * powerpc/rtas: enture rtas_call is called with mmu enabled (bsc#1023051). * powerpc/rtas_flash: allow user copy to flash block cache objects (bsc#1194869). * powerpc/security: fix speculation_store_bypass reporting on power10 (bsc#1188885 ltc#193722 git-fixes). * powerpc: add hotplug_smt support (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588). update config files. * powerpc: fix typos in comments (bsc#1212091 ltc#199106). * powerpc: move dma64_propname define to a header (bsc#1214297 ltc#197503). * pseries/iommu/ddw: fix kdump to work in absence of ibm,dma-window (bsc#1214297 ltc#197503). * pstore/ram: check start of empty przs during init (git-fixes). * pwm: add a stub for devm_pwmchip_add() (git-fixes). * pwm: meson: fix handling of period/duty if greater than uint_max (git- fixes). * pwm: meson: simplify duplicated per-channel tracking (git-fixes). * qed: fix scheduling in a tasklet while getting stats (git-fixes). * rdma/bnxt_re: fix error handling in probe failure path (git-fixes) * rdma/bnxt_re: fix max_qp count for virtual functions (git-fixes) * rdma/efa: fix wrong resources deallocation order (git-fixes) * rdma/hns: fix cq and qp cache affinity (git-fixes) * rdma/hns: fix incorrect post-send with direct wqe of wr-list (git-fixes) * rdma/hns: fix port active speed (git-fixes) * rdma/irdma: prevent zero-length stag registration (git-fixes) * rdma/irdma: replaceone-element array with flexible-array member (git-fixes) * rdma/mlx5: return the firmware result upon destroying qp/rq (git-fixes) * rdma/qedr: remove a duplicate assignment in irdma_query_ah() (git-fixes) * rdma/siw: balance the reference of cep-> kref in the error path (git-fixes) * rdma/siw: correct wrong debug message (git-fixes) * rdma/umem: set iova in odp flow (git-fixes) * readme.branch: add miroslav franc as a sle15-sp4 co-maintainer. * regmap: rbtree: use alloc_flags for memory allocations (git-fixes). * revert "ib/isert: fix incorrect release of isert connection" (git-fixes) * revert "tracing: add "(fault)" name injection to kernel probes" (git-fixes). * ring-buffer: do not swap cpu_buffer during resize process (git-fixes). * ring-buffer: fix deadloop issue on reading trace_pipe (git-fixes). * ring-buffer: fix wrong stat of cpu_buffer-> read (git-fixes). * rpmsg: glink: add check for kstrdup (git-fixes). * s390/purgatory: disable branch profiling (git-fixes bsc#1214372). * sched/fair: fix inaccurate tally of ttwu_move_affine (git fixes). * sched/fair: use recent_used_cpu to test p-> cpus_ptr (git fixes). * sched/psi: use kernfs polling functions for psi trigger polling (bsc#1209799). * scsi: bsg: increase number of devices (bsc#1210048). * scsi: core: do not wait for quiesce in scsi_device_block() (bsc#1209284). * scsi: core: do not wait for quiesce in scsi_stop_queue() (bsc#1209284). * scsi: core: improve warning message in scsi_device_block() (bsc#1209284). * scsi: core: merge scsi_internal_device_block() and device_block() (bsc#1209284). * scsi: rdma/srp: fix residual handling (git-fixes) * scsi: sg: increase number of devices (bsc#1210048). * scsi: storvsc: always set no_report_opcodes (git-fixes). * scsi: storvsc: fix handling of virtual fibre channel timeouts (git-fixes). * scsi: storvsc: handle srb status value 0x30 (git-fixes). * scsi: storvsc: limit max_sectors for virtual fibre channel devices (git- fixes). * scsi: zfcp:defer fc_rport blocking until after adisc response (git-fixes bsc#1214371). * selftests/futex: order calls to futex_lock_pi (git-fixes). * selftests/harness: actually report skip for signal tests (git-fixes). * selftests/resctrl: close perf value read fd on errors (git-fixes). * selftests/resctrl: do not leak buffer in fill_cache() (git-fixes). * selftests/resctrl: unmount resctrl fs if child fails to run benchmark (git- fixes). * selftests/rseq: check if libc rseq support is registered (git-fixes). * selftests: forwarding: add a helper to skip test when using veth pairs (git- fixes). * selftests: forwarding: ethtool: skip when using veth pairs (git-fixes). * selftests: forwarding: ethtool_extended_state: skip when using veth pairs (git-fixes). * selftests: forwarding: skip test when no interfaces are specified (git- fixes). * selftests: forwarding: switch off timeout (git-fixes). * selftests: forwarding: tc_actions: cleanup temporary files when test is aborted (git-fixes). * selftests: forwarding: tc_actions: use ncat instead of nc (git-fixes). * selftests: forwarding: tc_flower: relax success criterion (git-fixes). * selftests: mirror_gre_changes: tighten up the ttl test match (git-fixes). * serial: sc16is7xx: fix broken port 0 uart init (git-fixes). * serial: sc16is7xx: fix bug when first setting gpio direction (git-fixes). * serial: sprd: assign sprd_port after initialized to avoid wrong access (git- fixes). * serial: sprd: fix dma buffer leak issue (git-fixes). * serial: tegra: handle clk prepare error in tegra_uart_hw_init() (git-fixes). * sfc: fix crash when reading stats while nic is resetting (git-fixes). * smb3: do not send lease break acknowledgment if all file handles have been closed (git-fixes). * smb3: do not set ntlmssp_version flag for negotiate not auth request (bsc#1193629). * smb: client: fix -wstringop-overflow issues (bsc#1193629). * smb: client: fix dfs link mount against w2k8 (bsc#1212142). * smb:client: fix null auth (git-fixes). * soc: aspeed: socinfo: add kfree for kstrdup (git-fixes). * soundwire: bus: pm_runtime_request_resume on peripheral attachment (git- fixes). * soundwire: fix enumeration completion (git-fixes). * spi: tegra20-sflash: fix to check return value of platform_get_irq() in tegra_sflash_probe() (git-fixes). * supported.conf: fix typos for -!optional markers * target: compare and write backend driver sense handling (bsc#1177719 bsc#1213026). * target_core_rbd: fix leak and reduce kmalloc calls (bsc#1212873). * target_core_rbd: fix rbd_img_request.snap_id assignment (bsc#1212857). * target_core_rbd: remove snapshot existence validation code (bsc#1212857). * thunderbolt: read retimer nvm authentication status prior tb_retimer_set_inbound_sbtx() (git-fixes). * timers: add shutdown mechanism to the internal functions (bsc#1213970). * timers: provide timer_shutdown_sync (bsc#1213970). * timers: rename del_timer() to timer_delete() (bsc#1213970). * timers: rename del_timer_sync() to timer_delete_sync() (bsc#1213970). * timers: replace bug_on()s (bsc#1213970). * timers: silently ignore timers with a null function (bsc#1213970). * timers: split [try_to_]del_timer_sync to prepare for shutdown mode (bsc#1213970). * timers: update kernel-doc for various functions (bsc#1213970). * timers: use del_timer_sync() even on up (bsc#1213970). * tracing/histograms: add histograms to hist_vars if they have referenced variables (git-fixes). * tracing/histograms: return an error if we fail to add histogram to hist_vars list (git-fixes). * tracing/probes: fix not to count error code to total length (git-fixes). * tracing/probes: fix to avoid double count of the string length on the array (git-fixes). * tracing/probes: fix to record 0-length data_loc in fetch_store_string*() if fails (git-fixes). * tracing/probes: fix to update dynamic data counter if fetcharg uses it (git- fixes). * tracing: fix cpu buffers unavailabledue to 'record_disabled' missed (git- fixes). * tracing: fix memleak due to race between current_tracer and trace (git- fixes). * tracing: fix memory leak of iter-> temp when reading trace_pipe (git-fixes). * tracing: fix null pointer dereference in tracing_err_log_open() (git-fixes). * tracing: fix warning in trace_buffered_event_disable() (git-fixes). * tty: fix hang on tty device with no_room set (git-fixes). * tty: n_gsm: fix the uaf caused by race condition in gsm_cleanup_mux (git- fixes). * tty: serial: fsl_lpuart: add i.mxrt1050 support (git-fixes). * tty: serial: fsl_lpuart: clear the error flags by writing 1 for lpuart32 platforms (git-fixes). * tty: serial: fsl_lpuart: make rx_watermark configurable for different platforms (git-fixes). * tty: serial: fsl_lpuart: reduce rx watermark to 0 on ls1028a (git-fixes). * ubifs: fix memleak when insert_old_idx() failed (git-fixes). * update patches.suse/cpufreq-intel_pstate-fix-cpu-pstate.turbo_freq-initi (git-fixes bsc#1212526 bsc#1214368 jsc#ped-4927 jsc#ped-4929). * usb-storage: alauda: fix uninit-value in alauda_check_media() (git-fixes). * usb: chipidea: imx: add missing usb phy dpdm wakeup setting (git-fixes). * usb: chipidea: imx: do not request qos for imx8ulp (git-fixes). * usb: chipidea: imx: improve logic if samsung,picophy-* parameter is 0 (git- fixes). * usb: common: usb-conn-gpio: prevent bailing out if initial role is none (git-fixes). * usb: dwc3: fix typos in gadget.c (git-fixes). * usb: dwc3: meson-g12a: do post init to fix broken usb after resumption (git- fixes). * usb: dwc3: properly handle processing of pending events (git-fixes). * usb: gadget: f_mass_storage: fix unused variable warning (git-fixes). * usb: gadget: fix the memory leak in raw_gadget driver (git-fixes). * usb: gadget: u_serial: avoid spinlock recursion in __gs_console_push (git- fixes). * usb: ohci-at91: fix the unhandle interrupt when resume (git-fixes). * usb: phy: mxs: fix gettingwrong state with mxs_phy_is_otg_host() (git- fixes). * usb: quirks: add quirk for focusrite scarlett (git-fixes). * usb: serial: option: add quectel ec200a module support (git-fixes). * usb: serial: option: support quectel em060k_128 (git-fixes). * usb: serial: simple: add kaufmann rks+can vcp (git-fixes). * usb: serial: simple: sort driver entries (git-fixes). * usb: typec: altmodes/displayport: signal hpd when configuring pin assignment (git-fixes). * usb: typec: tcpm: fix response to vsafe0v event (git-fixes). * usb: typec: tcpm: set initial svdm version based on pd revision (git-fixes). * usb: zaurus: add id for a-300/b-500/c-700 (git-fixes). * watchdog: sp5100_tco: support hygon fch/sch (server controller hub) (git- fixes). * wifi: ath10k: use rmw accessors for changing lnkctl (git-fixes). * wifi: ath11k: use rmw accessors for changing lnkctl (git-fixes). * wifi: ath9k: fix races between ath9k_wmi_cmd and ath9k_wmi_ctrl_rx (git- fixes). * wifi: ath9k: protect wmi command response buffer replacement with a lock (git-fixes). * wifi: ath9k: use is_err() with debugfs_create_dir() (git-fixes). * wifi: cfg80211: fix return value in scan logic (git-fixes). * wifi: cfg80211: fix sband iftype data lookup for ap_vlan (git-fixes). * wifi: mt76: mt7615: do not advertise 5 ghz on first phy of mt7615d (dbdc) (git-fixes). * wifi: mt76: mt7915: fix power-limits while chan_switch (git-fixes). * wifi: mt76: mt7921: do not support one stream on secondary antenna only (git-fixes). * wifi: mt76: testmode: add nla_policy for mt76_tm_attr_tx_length (git-fixes). * wifi: mwifiex: avoid possible null skb pointer dereference (git-fixes). * wifi: mwifiex: fix error recovery in pcie buffer descriptor management (git- fixes). * wifi: mwifiex: fix memory leak in mwifiex_histogram_read() (git-fixes). * wifi: mwifiex: fix missed return in oob checks failed path (git-fixes). * wifi: mwifiex: fix oob and integer underflow when rx packets (git-fixes). *wifi: nl80211/cfg80211: add forgotten nla_policy for bss color attribute (git-fixes). * wifi: radiotap: fix kernel-doc notation warnings (git-fixes). * wifi: rtw89: debug: fix error handling in rtw89_debug_priv_btc_manual_set() (git-fixes). * x86/alternative: make custom return thunk unconditional (git-fixes). * x86/cpu/amd: disable xsaves on amd family 0x17 (git-fixes). * x86/cpu/kvm: provide untrain_ret_vm (git-fixes). * x86/cpu: clean up srso return thunk mess (git-fixes). * x86/cpu: cleanup the untrain mess (git-fixes). * x86/cpu: fix __x86_return_thunk symbol type (git-fixes). * x86/cpu: fix up srso_safe_ret() and __x86_return_thunk() (git-fixes). * x86/cpu: rename original retbleed methods (git-fixes). * x86/cpu: rename srso_(.*) _alias to srso_alias_ \1 (git-fixes). * x86/mce: make sure logged mces are processed after sysfs update (git-fixes). * x86/retpoline,kprobes: fix position of thunk sections with config_lto_clang (git-fixes). * x86/retpoline,kprobes: skip optprobe check for indirect jumps with retpolines and ibt (git-fixes). * x86/retpoline: do not clobber rflags during srso_safe_ret() (git-fixes). * x86/sev: Make enc_dec_hypercall() accept a size instead of npages (bsc#1214635). * x86/speculation: add cpu_show_gds() prototype (git-fixes). * x86/speculation: mark all skylake cpus as vulnerable to gds (git-fixes). * x86/srso: correct the mitigation status when smt is disabled (git-fixes). * x86/srso: disable the mitigation on unaffected configurations (git-fixes). * x86/srso: explain the untraining sequences a bit more (git-fixes). * x86/srso: fix build breakage with the llvm linker (git-fixes). * x86/srso: fix return thunks in generated code (git-fixes). * x86/static_call: fix __static_call_fixup() (git-fixes). * xfs: fix sb write verify for lazysbcount (bsc#1214661). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSErecommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch openSUSE-SLE-15.4-2023-3964=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-3964=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-3964=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-3964=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-3964=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2023-3964=1 * SUSE Real Time Module 15-SP4 zypper in -t patch SUSE-SLE-Module-RT-15-SP4-2023-3964=1 ## Package List: * openSUSE Leap 15.4 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.53.1 * dlm-kmp-rt-5.14.21-150400.15.53.1 * kernel-rt-devel-5.14.21-150400.15.53.1 * gfs2-kmp-rt-debuginfo-5.14.21-150400.15.53.1 * kernel-rt_debug-debugsource-5.14.21-150400.15.53.1 * kernel-rt-devel-debuginfo-5.14.21-150400.15.53.1 * kernel-rt_debug-debuginfo-5.14.21-150400.15.53.1 * kernel-rt-debuginfo-5.14.21-150400.15.53.1 * kernel-rt_debug-devel-5.14.21-150400.15.53.1 * kernel-syms-rt-5.14.21-150400.15.53.1 * dlm-kmp-rt-debuginfo-5.14.21-150400.15.53.1 * ocfs2-kmp-rt-debuginfo-5.14.21-150400.15.53.1 * gfs2-kmp-rt-5.14.21-150400.15.53.1 * cluster-md-kmp-rt-debuginfo-5.14.21-150400.15.53.1 * kernel-rt_debug-devel-debuginfo-5.14.21-150400.15.53.1 * cluster-md-kmp-rt-5.14.21-150400.15.53.1 * ocfs2-kmp-rt-5.14.21-150400.15.53.1 * openSUSE Leap 15.4 (noarch) * kernel-source-rt-5.14.21-150400.15.53.1 * kernel-devel-rt-5.14.21-150400.15.53.1 * openSUSE Leap 15.4 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.53.1 * kernel-rt_debug-5.14.21-150400.15.53.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (nosrc x86_64) *kernel-rt-5.14.21-150400.15.53.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.53.1 * kernel-rt-debuginfo-5.14.21-150400.15.53.1 * SUSE Linux Enterprise Micro 5.3 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.53.1 * SUSE Linux Enterprise Micro 5.3 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.53.1 * kernel-rt-debuginfo-5.14.21-150400.15.53.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.53.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.53.1 * kernel-rt-debuginfo-5.14.21-150400.15.53.1 * SUSE Linux Enterprise Micro 5.4 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.53.1 * SUSE Linux Enterprise Micro 5.4 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.53.1 * kernel-rt-debuginfo-5.14.21-150400.15.53.1 * SUSE Linux Enterprise Live Patching 15-SP4 (x86_64) * kernel-livepatch-5_14_21-150400_15_53-rt-1-150400.1.3.1 * kernel-livepatch-SLE15-SP4-RT_Update_13-debugsource-1-150400.1.3.1 * kernel-livepatch-5_14_21-150400_15_53-rt-debuginfo-1-150400.1.3.1 * SUSE Real Time Module 15-SP4 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.53.1 * dlm-kmp-rt-5.14.21-150400.15.53.1 * kernel-rt-devel-5.14.21-150400.15.53.1 * gfs2-kmp-rt-debuginfo-5.14.21-150400.15.53.1 * kernel-rt_debug-debugsource-5.14.21-150400.15.53.1 * kernel-rt-devel-debuginfo-5.14.21-150400.15.53.1 * kernel-rt_debug-debuginfo-5.14.21-150400.15.53.1 * kernel-rt-debuginfo-5.14.21-150400.15.53.1 * kernel-rt_debug-devel-5.14.21-150400.15.53.1 * kernel-syms-rt-5.14.21-150400.15.53.1 * dlm-kmp-rt-debuginfo-5.14.21-150400.15.53.1 * ocfs2-kmp-rt-debuginfo-5.14.21-150400.15.53.1 * gfs2-kmp-rt-5.14.21-150400.15.53.1 * cluster-md-kmp-rt-debuginfo-5.14.21-150400.15.53.1 * kernel-rt_debug-devel-debuginfo-5.14.21-150400.15.53.1 * cluster-md-kmp-rt-5.14.21-150400.15.53.1 *ocfs2-kmp-rt-5.14.21-150400.15.53.1 * SUSE Real Time Module 15-SP4 (noarch) * kernel-source-rt-5.14.21-150400.15.53.1 * kernel-devel-rt-5.14.21-150400.15.53.1 * SUSE Real Time Module 15-SP4 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.53.1 * kernel-rt_debug-5.14.21-150400.15.53.1 ## References: * https://www.suse.com/security/cve/CVE-2023-2007.html * https://www.suse.com/security/cve/CVE-2023-20588.html * https://www.suse.com/security/cve/CVE-2023-34319.html * https://www.suse.com/security/cve/CVE-2023-3610.html * https://www.suse.com/security/cve/CVE-2023-37453.html * https://www.suse.com/security/cve/CVE-2023-3772.html * https://www.suse.com/security/cve/CVE-2023-3863.html * https://www.suse.com/security/cve/CVE-2023-4128.html * https://www.suse.com/security/cve/CVE-2023-4133.html * https://www.suse.com/security/cve/CVE-2023-4134.html * https://www.suse.com/security/cve/CVE-2023-4147.html * https://www.suse.com/security/cve/CVE-2023-4194.html * https://www.suse.com/security/cve/CVE-2023-4273.html * https://www.suse.com/security/cve/CVE-2023-4387.html * https://www.suse.com/security/cve/CVE-2023-4459.html * https://www.suse.com/security/cve/CVE-2023-4569.html * https://bugzilla.suse.com/show_bug.cgi?id=1023051 * https://bugzilla.suse.com/show_bug.cgi?id=1120059 * https://bugzilla.suse.com/show_bug.cgi?id=1177719 * https://bugzilla.suse.com/show_bug.cgi?id=1188885 * https://bugzilla.suse.com/show_bug.cgi?id=1193629 * https://bugzilla.suse.com/show_bug.cgi?id=1194869 * https://bugzilla.suse.com/show_bug.cgi?id=1205462 * https://bugzilla.suse.com/show_bug.cgi?id=1208902 * https://bugzilla.suse.com/show_bug.cgi?id=1208949 * https://bugzilla.suse.com/show_bug.cgi?id=1209284 * https://bugzilla.suse.com/show_bug.cgi?id=1209799 * https://bugzilla.suse.com/show_bug.cgi?id=1210048 * https://bugzilla.suse.com/show_bug.cgi?id=1210448 * https://bugzilla.suse.com/show_bug.cgi?id=1212091 * https://bugzilla.suse.com/show_bug.cgi?id=1212142 *https://bugzilla.suse.com/show_bug.cgi?id=1212526 * https://bugzilla.suse.com/show_bug.cgi?id=1212857 * https://bugzilla.suse.com/show_bug.cgi?id=1212873 * https://bugzilla.suse.com/show_bug.cgi?id=1213026 * https://bugzilla.suse.com/show_bug.cgi?id=1213123 * https://bugzilla.suse.com/show_bug.cgi?id=1213546 * https://bugzilla.suse.com/show_bug.cgi?id=1213580 * https://bugzilla.suse.com/show_bug.cgi?id=1213601 * https://bugzilla.suse.com/show_bug.cgi?id=1213666 * https://bugzilla.suse.com/show_bug.cgi?id=1213757 * https://bugzilla.suse.com/show_bug.cgi?id=1213759 * https://bugzilla.suse.com/show_bug.cgi?id=1213916 * https://bugzilla.suse.com/show_bug.cgi?id=1213921 * https://bugzilla.suse.com/show_bug.cgi?id=1213927 * https://bugzilla.suse.com/show_bug.cgi?id=1213946 * https://bugzilla.suse.com/show_bug.cgi?id=1213968 * https://bugzilla.suse.com/show_bug.cgi?id=1213970 * https://bugzilla.suse.com/show_bug.cgi?id=1213971 * https://bugzilla.suse.com/show_bug.cgi?id=1214000 * https://bugzilla.suse.com/show_bug.cgi?id=1214019 * https://bugzilla.suse.com/show_bug.cgi?id=1214120 * https://bugzilla.suse.com/show_bug.cgi?id=1214149 * https://bugzilla.suse.com/show_bug.cgi?id=1214180 * https://bugzilla.suse.com/show_bug.cgi?id=1214238 * https://bugzilla.suse.com/show_bug.cgi?id=1214285 * https://bugzilla.suse.com/show_bug.cgi?id=1214297 * https://bugzilla.suse.com/show_bug.cgi?id=1214299 * https://bugzilla.suse.com/show_bug.cgi?id=1214350 * https://bugzilla.suse.com/show_bug.cgi?id=1214368 * https://bugzilla.suse.com/show_bug.cgi?id=1214370 * https://bugzilla.suse.com/show_bug.cgi?id=1214371 * https://bugzilla.suse.com/show_bug.cgi?id=1214372 * https://bugzilla.suse.com/show_bug.cgi?id=1214380 * https://bugzilla.suse.com/show_bug.cgi?id=1214386 * https://bugzilla.suse.com/show_bug.cgi?id=1214392 * https://bugzilla.suse.com/show_bug.cgi?id=1214393 * https://bugzilla.suse.com/show_bug.cgi?id=1214397 *https://bugzilla.suse.com/show_bug.cgi?id=1214428 * https://bugzilla.suse.com/show_bug.cgi?id=1214451 * https://bugzilla.suse.com/show_bug.cgi?id=1214635 * https://bugzilla.suse.com/show_bug.cgi?id=1214659 * https://bugzilla.suse.com/show_bug.cgi?id=1214661 * https://bugzilla.suse.com/show_bug.cgi?id=1214729 * https://bugzilla.suse.com/show_bug.cgi?id=1214742 * https://bugzilla.suse.com/show_bug.cgi?id=1214743 * https://bugzilla.suse.com/show_bug.cgi?id=1214756 * https://bugzilla.suse.com/show_bug.cgi?id=1215522 * https://bugzilla.suse.com/show_bug.cgi?id=1215523 * https://bugzilla.suse.com/show_bug.cgi?id=1215552 * https://bugzilla.suse.com/show_bug.cgi?id=1215553 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-4579&page_caps=&user_role= * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-4759&page_caps=&user_role= * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-4927&page_caps=&user_role= * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-4929&page_caps=&user_role= * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-5738&page_caps=&user_role= * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-6003&page_caps=&user_role= * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-6004&page_caps=&user_role= . The latest update for the Linux Kernel fixes significant flaws and security issues within SUSE distributions, improving overall defense.. Linux Kernel Update, SUSE Security Advisory, Privilege Escalation, Software Patch, DoS Mitigation. . Severity: Important. LinuxSecurity.com Team
Oct 04, 2023
•Important
OpenSUSE
202
security advisorydenial of servicesecurity issueopenSUSE 15 SP4: 2023:3318-1 Important: Kernel Security Update
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed:. # Security update for the Linux Kernel Announcement ID: SUSE-SU-2023:3318-1 Rating: important References: * #1150305 * #1193629 * #1194869 * #1206418 * #1207129 * #1207894 * #1208788 * #1210565 * #1210584 * #1210627 * #1210780 * #1210853 * #1211131 * #1211243 * #1211738 * #1211811 * #1211867 * #1212301 * #1212502 * #1212604 * #1212846 * #1212901 * #1212905 * #1213010 * #1213011 * #1213012 * #1213013 * #1213014 * #1213015 * #1213016 * #1213017 * #1213018 * #1213019 * #1213020 * #1213021 * #1213024 * #1213025 * #1213032 * #1213034 * #1213035 * #1213036 * #1213037 * #1213038 * #1213039 * #1213040 * #1213041 * #1213059 * #1213061 * #1213087 * #1213088 * #1213089 * #1213090 * #1213092 * #1213093 * #1213094 * #1213095 * #1213096 * #1213098 * #1213099 * #1213100 * #1213102 * #1213103 * #1213104 * #1213105 * #1213106 * #1213107 * #1213108 * #1213109 * #1213110 * #1213111 * #1213112 * #1213113 * #1213114 * #1213134 * #1213167 * #1213245 * #1213247 * #1213252 * #1213258 * #1213259 * #1213263 * #1213264 * #1213272 * #1213286 * #1213287 * #1213304 * #1213523 * #1213524 * #1213543 * #1213585 * #1213586 * #1213588 * #1213620 * #1213653 * #1213705 * #1213713 * #1213715 * #1213747 * #1213756 * #1213759 * #1213777 * #1213810 * #1213812 * #1213856 * #1213857 * #1213863 * #1213867 * #1213870 * #1213871 Cross-References: * CVE-2022-40982 * CVE-2023-0459 * CVE-2023-20569 * CVE-2023-20593 * CVE-2023-21400 * CVE-2023-2156 * CVE-2023-2166 * CVE-2023-2985 * CVE-2023-31083 * CVE-2023-3117 * CVE-2023-31248 * CVE-2023-3268 * CVE-2023-3390 * CVE-2023-35001 * CVE-2023-3567 * CVE-2023-3609 * CVE-2023-3611 * CVE-2023-3776 * CVE-2023-3812 *CVE-2023-4004 CVSS scores: * CVE-2022-40982 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2022-40982 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N * CVE-2023-0459 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-0459 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-20569 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N * CVE-2023-20593 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2023-20593 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-21400 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-21400 ( NVD ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-2156 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-2156 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-2166 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-2166 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-2985 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-2985 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-31083 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-31083 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-3117 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3117 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-31248 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-31248 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3268 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L * CVE-2023-3268 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-3390 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3390 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-35001 ( SUSE ): 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-35001 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3567 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3567 ( NVD ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3609 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3609 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3611 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3611 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3776 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3776 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3812 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3812 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-4004 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-4004 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * openSUSE Leap Micro 5.3 * openSUSE Leap Micro 5.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Real Time Module 15-SP4 An update that solves 20 vulnerabilities and has 89 fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: * CVE-2022-40982: Fixed transient execution attack called "Gather Data Sampling" (bsc#1206418). * CVE-2023-0459: Fixed information leak in __uaccess_begin_nospec (bsc#1211738). *CVE-2023-20569: Fixed side channel attack âInceptionâ or âRAS Poisoningâ (bsc#1213287). * CVE-2023-20593: Fixed a ZenBleed issue in "Zen 2" CPUs that could allow an attacker to potentially access sensitive information (bsc#1213286). * CVE-2023-21400: Fixed several memory corruptions due to improper locking in io_uring (bsc#1213272). * CVE-2023-2156: Fixed a flaw in the networking subsystem within the handling of the RPL protocol (bsc#1211131). * CVE-2023-2166: Fixed NULL pointer dereference in can_rcv_filter (bsc#1210627). * CVE-2023-2985: Fixed an use-after-free vulnerability in hfsplus_put_super in fs/hfsplus/super.c that could allow a local user to cause a denial of service (bsc#1211867). * CVE-2023-31083: Fixed race condition in hci_uart_tty_ioctl (bsc#1210780). * CVE-2023-3117: Fixed an use-after-free vulnerability in the netfilter subsystem when processing named and anonymous sets in batch requests that could allow a local user with CAP_NET_ADMIN capability to crash or potentially escalate their privileges on the system (bsc#1213245). * CVE-2023-31248: Fixed an use-after-free vulnerability in nft_chain_lookup_byid that could allow a local attacker to escalate their privilege (bsc#1213061). * CVE-2023-3268: Fixed an out of bounds memory access flaw in relay_file_read_start_pos in the relayfs (bsc#1212502). * CVE-2023-3390: Fixed an use-after-free vulnerability in the netfilter subsystem in net/netfilter/nf_tables_api.c that could allow a local attacker with user access to cause a privilege escalation issue (bsc#1212846). * CVE-2023-35001: Fixed an out-of-bounds memory access flaw in nft_byteorder that could allow a local attacker to escalate their privilege (bsc#1213059). * CVE-2023-3567: Fixed a use-after-free in vcs_read in drivers/tty/vt/vc_screen.c (bsc#1213167). * CVE-2023-3609: Fixed reference counter leak leading to overflow in net/sched (bsc#1213586). * CVE-2023-3611: Fixed anout-of-bounds write in net/sched sch_qfq(bsc#1213585). * CVE-2023-3776: Fixed improper refcount update in cls_fw leads to use-after- free (bsc#1213588). * CVE-2023-3812: Fixed an out-of-bounds memory access flaw in the TUN/TAP device driver functionality that could allow a local user to crash or potentially escalate their privileges on the system (bsc#1213543). * CVE-2023-4004: Fixed improper element removal netfilter nft_set_pipapo (bsc#1213812). The following non-security bugs were fixed: * acpi: utils: fix acpi_evaluate_dsm_typed() redefinition error (git-fixes). * add module_firmware() for firmware_tg357766 (git-fixes). * afs: adjust ack interpretation to try and cope with nat (git-fixes). * afs: fix access after dec in put functions (git-fixes). * afs: fix afs_getattr() to refetch file status if callback break occurred (git-fixes). * afs: fix dynamic root getattr (git-fixes). * afs: fix fileserver probe rtt handling (git-fixes). * afs: fix infinite loop found by xfstest generic/676 (git-fixes). * afs: fix lost servers_outstanding count (git-fixes). * afs: fix server-> active leak in afs_put_server (git-fixes). * afs: fix setting of mtime when creating a file/dir/symlink (git-fixes). * afs: fix updating of i_size with dv jump from server (git-fixes). * afs: fix vlserver probe rtt handling (git-fixes). * afs: return -eagain, not -eremoteio, when a file already locked (git-fixes). * afs: use refcount_t rather than atomic_t (git-fixes). * afs: use the operation issue time instead of the reply time for callbacks (git-fixes). * alsa: emu10k1: roll up loops in dsp setup code for audigy (git-fixes). * alsa: fireface: make read-only const array for model names static (git- fixes). * alsa: hda/realtek - remove 3k pull low procedure (git-fixes). * alsa: hda/realtek: add quirk for asus rog g614jx (git-fixes). * alsa: hda/realtek: add quirk for asus rog ga402x (git-fixes). * alsa: hda/realtek: add quirk for asus rog gx650p (git-fixes). * alsa: hda/realtek: add quirk for asus rog gz301v (git-fixes). * alsa: hda/realtek: add quirk for clevo npx0snx (git-fixes). * alsa: hda/realtek: add quirk for clevo ns70au (git-fixes). * alsa: hda/realtek: add quirks for unis h3c desktop b760 & q760 (git-fixes). * alsa: hda/realtek: add support for dell oasis 13/14/16 laptops (git-fixes). * alsa: hda/realtek: amend g634 quirk to enable rear speakers (git-fixes). * alsa: hda/realtek: enable mute led on hp laptop 15s-eq2xxx (git-fixes). * alsa: hda/realtek: fix generic fixup definition for cs35l41 amp (git-fixes). * alsa: hda/realtek: support asus g713pv laptop (git-fixes). * alsa: hda/realtek: whitespace fix (git-fixes). * alsa: hda/relatek: enable mute led on hp 250 g8 (git-fixes). * alsa: hda: fix a possible null-pointer dereference due to data race in snd_hdac_regmap_sync() (git-fixes). * alsa: oxfw: make read-only const array models static (git-fixes). * alsa: pcm: fix potential data race at pcm memory allocation helpers (git- fixes). * alsa: usb-audio: add quirk for microsoft modern wireless headset (bsc#1207129). * alsa: usb-audio: update for native dsd support quirks (git-fixes). * apparmor: fix missing error check for rhashtable_insert_fast (git-fixes). * arm64/mm: mark private vm_fault_x defines as vm_fault_t (git-fixes) * arm64: dts: microchip: sparx5: do not use psci on reference boards (git- fixes) * arm64: vdso: pass (void *) to virt_to_page() (git-fixes) * arm64: xor-neon: mark xor_arm64_neon_*() static (git-fixes) * asoc: atmel: fix the 8k sample parameter in i2sc master (git-fixes). * asoc: codecs: es8316: fix dmic config (git-fixes). * asoc: codecs: wcd-mbhc-v2: fix resource leaks on component remove (git- fixes). * asoc: codecs: wcd934x: fix resource leaks on component remove (git-fixes). * asoc: codecs: wcd938x: fix codec initialisation race (git-fixes). * asoc: codecs: wcd938x: fix db range for hphl and hphr (git-fixes). * asoc: codecs: wcd938x: fix missing clsh ctrlerror handling (git-fixes). * asoc: codecs: wcd938x: fix soundwire initialisation race (git-fixes). * asoc: da7219: check for failure reading aad irq events (git-fixes). * asoc: da7219: flush pending aad irq when suspending (git-fixes). * asoc: fsl_sai: disable bit clock with transmitter (git-fixes). * asoc: fsl_spdif: silence output on stop (git-fixes). * asoc: rt5682-sdw: fix for jd event handling in clockstop mode0 (git-fixes). * asoc: rt711-sdca: fix for jd event handling in clockstop mode0 (git-fixes). * asoc: rt711: fix for jd event handling in clockstop mode0 (git-fixes). * asoc: tegra: fix adx byte map (git-fixes). * asoc: tegra: fix amx byte map (git-fixes). * asoc: wm8904: fill the cache for wm8904_adc_test_0 register (git-fixes). * ata: pata_ns87415: mark ns87560_tf_read static (git-fixes). * block, bfq: fix division by zero error on zero wsum (bsc#1213653). * block: fix a source code comment in include/uapi/linux/blkzoned.h (git- fixes). * can: bcm: fix uaf in bcm_proc_show() (git-fixes). * can: gs_usb: gs_can_close(): add missing set of can state to can_state_stopped (git-fixes). * ceph: do not let check_caps skip sending responses for revoke msgs (bsc#1213856). * cifs: add a warning when the in-flight count goes negative (bsc#1193629). * cifs: address unused variable warning (bsc#1193629). * cifs: do all necessary checks for credits within or before locking (bsc#1193629). * cifs: fix lease break oops in xfstest generic/098 (bsc#1193629). * cifs: fix max_credits implementation (bsc#1193629). * cifs: fix session state check in reconnect to avoid use-after-free issue (bsc#1193629). * cifs: fix session state check in smb2_find_smb_ses (bsc#1193629). * cifs: fix session state transition to avoid use-after-free issue (bsc#1193629). * cifs: fix sockaddr comparison in iface_cmp (bsc#1193629). * cifs: fix status checks in cifs_tree_connect (bsc#1193629). * cifs: log session id when a matching ses is not found (bsc#1193629). *cifs: new dynamic tracepoint to track ses not found errors (bsc#1193629). * cifs: prevent use-after-free by freeing the cfile later (bsc#1193629). * cifs: print all credit counters in debugdata (bsc#1193629). * cifs: print client_guid in debugdata (bsc#1193629). * cifs: print more detail when invalidate_inode_mapping fails (bsc#1193629). * cifs: print nosharesock value while dumping mount options (bsc#1193629). * clk: qcom: camcc-sc7180: add parent dependency to all camera gdscs (git- fixes). * clk: qcom: gcc-ipq6018: use floor ops for sdcc clocks (git-fixes). * coda: avoid partial allocation of sig_inputargs (git-fixes). * codel: fix kernel-doc notation warnings (git-fixes). * crypto: kpp - add helper to set reqsize (git-fixes). * crypto: qat - use helper to set reqsize (git-fixes). * delete suse/memcg-drop-kmem-limit_in_bytes. drop the patch in order to fix bsc#1213705. * devlink: fix kernel-doc notation warnings (git-fixes). * dlm: fix missing lkb refcount handling (git-fixes). * dlm: fix plock invalid read (git-fixes). * docs: networking: update codeaurora references for rmnet (git-fixes). * documentation: abi: sysfs-class-net-qmi: pass_through contact update (git- fixes). * documentation: bonding: fix the doc of peer_notif_delay (git-fixes). * documentation: devices.txt: reconcile serial/ucc_uart minor numers (git- fixes). * documentation: timers: hrtimers: make hybrid union historical (git-fixes). * drm/amd/display: correct `dmub_fw_version` macro (git-fixes). * drm/amd/display: disable mpc split by default on special asic (git-fixes). * drm/amd/display: keep phy active for dp displays on dcn31 (git-fixes). * drm/amdgpu: avoid restore process run into dead loop (git-fixes). * drm/amdgpu: fix clearing mappings for bos that are always valid in vm (git- fixes). * drm/amdgpu: set vmbo destroy after pt bo is created (git-fixes). * drm/amdgpu: validate vm ioctl flags (git-fixes). * drm/atomic: allow vblank-enabled + self-refresh"disable" (git-fixes). * drm/atomic: fix potential use-after-free in nonblocking commits (git-fixes). * drm/bridge: tc358768: add atomic_get_input_bus_fmts() implementation (git- fixes). * drm/bridge: tc358768: fix tclk_trailcnt computation (git-fixes). * drm/bridge: tc358768: fix ths_trailcnt computation (git-fixes). * drm/bridge: tc358768: fix ths_zerocnt computation (git-fixes). * drm/client: fix memory leak in drm_client_modeset_probe (git-fixes). * drm/client: fix memory leak in drm_client_target_cloned (git-fixes). * drm/i915/psr: use hw.adjusted mode when calculating io/fast wake times (git- fixes). * drm/i915: fix one wrong caching mode enum usage (git-fixes). * drm/msm/adreno: fix snapshot bindless_data size (git-fixes). * drm/msm/disp/dpu: get timing engine status from intf status register (git- fixes). * drm/msm/dpu: drop enum dpu_core_perf_data_bus_id (git-fixes). * drm/msm/dpu: set dpu_data_hctl_en for in intf_sc7180_mask (git-fixes). * drm/msm: fix is_err_or_null() vs null check in a5xx_submit_in_rb() (git- fixes). * drm/panel: simple: add connector_type for innolux_at043tn24 (git-fixes). * drm/panel: simple: add powertip ph800480t013 drm_display_mode flags (git- fixes). * drm/radeon: fix integer overflow in radeon_cs_parser_init (git-fixes). * drm/ttm: do not leak a resource on swapout move error (git-fixes). * drop amdgpu patches for fixing regression (bsc#1213304,bsc#1213777) * dt-bindings: phy: brcm,brcmstb-usb-phy: fix error in "compatible" conditional schema (git-fixes). * enable nxp snvs rtc driver for i.mx 8mq/8mp (jsc#PED-4758) * ext4: add ea_inode checking to ext4_iget() (bsc#1213106). * ext4: add ext4_sb_block_valid() refactored out of ext4_inode_block_valid() (bsc#1213088). * ext4: add lockdep annotations for i_data_sem for ea_inode's (bsc#1213109). * ext4: add strict range checks while freeing blocks (bsc#1213089). * ext4: avoid deadlock in fs reclaim with page writeback (bsc#1213016). * ext4: bail out ofext4_xattr_ibody_get() fails for any reason (bsc#1213018). * ext4: block range must be validated before use in ext4_mb_clear_bb() (bsc#1213090). * ext4: check iomap type only if ext4_iomap_begin() does not fail (bsc#1213103). * ext4: disallow ea_inodes with extended attributes (bsc#1213108). * ext4: fail ext4_iget if special inode unallocated (bsc#1213010). * ext4: fix bug_on in __es_tree_search caused by bad quota inode (bsc#1213111). * ext4: fix data races when using cached status extents (bsc#1213102). * ext4: fix deadlock when converting an inline directory in nojournal mode (bsc#1213105). * ext4: fix i_disksize exceeding i_size problem in paritally written case (bsc#1213015). * ext4: fix lockdep warning when enabling mmp (bsc#1213100). * ext4: fix reusing stale buffer heads from last failed mounting (bsc#1213020). * ext4: fix task hung in ext4_xattr_delete_inode (bsc#1213096). * ext4: fix to check return value of freeze_bdev() in ext4_shutdown() (bsc#1213021). * ext4: fix use-after-free read in ext4_find_extent for bigalloc + inline (bsc#1213098). * ext4: fix warning in ext4_update_inline_data (bsc#1213012). * ext4: fix warning in mb_find_extent (bsc#1213099). * ext4: improve error handling from ext4_dirhash() (bsc#1213104). * ext4: improve error recovery code paths in __ext4_remount() (bsc#1213017). * ext4: move where set the may_inline_data flag is set (bsc#1213011). * ext4: only update i_reserved_data_blocks on successful block allocation (bsc#1213019). * ext4: refactor ext4_free_blocks() to pull out ext4_mb_clear_bb() (bsc#1213087). * ext4: refuse to create ea block when umounted (bsc#1213093). * ext4: set lockdep subclass for the ea_inode in ext4_xattr_inode_cache_find() (bsc#1213107). * ext4: turn quotas off if mount failed after enabling quotas (bsc#1213110). * ext4: update s_journal_inum if it changes after journal replay (bsc#1213094). * ext4: use ext4_fc_tl_mem in fast-commit replay path(bsc#1213092). * ext4: zero i_disksize when initializing the bootloader inode (bsc#1213013). * fbdev: au1200fb: fix missing irq check in au1200fb_drv_probe (git-fixes). * fbdev: imxfb: warn about invalid left/right margin (git-fixes). * file: always lock position for fmode_atomic_pos (bsc#1213759). * fix documentation of panic_on_warn (git-fixes). * fs: dlm: add midcomms init/start functions (git-fixes). * fs: dlm: do not set stop rx flag after node reset (git-fixes). * fs: dlm: filter user dlm messages for kernel locks (git-fixes). * fs: dlm: fix log of lowcomms vs midcomms (git-fixes). * fs: dlm: fix race between test_bit() and queue_work() (git-fixes). * fs: dlm: fix race in lowcomms (git-fixes). * fs: dlm: handle -ebusy first in lock arg validation (git-fixes). * fs: dlm: move sending fin message into state change handling (git-fixes). * fs: dlm: retry accept() until -eagain or error returns (git-fixes). * fs: dlm: return positive pid value for f_getlk (git-fixes). * fs: dlm: start midcomms before scand (git-fixes). * fs: hfsplus: remove warn_on() from hfsplus_cat_{read,write}_inode() (git- fixes). * fs: jfs: check for read-only mounted filesystem in txbegin (git-fixes). * fs: jfs: fix null-ptr-deref read in txbegin (git-fixes). * fs: jfs: fix ubsan: array-index-out-of-bounds in dballocdmaplev (git-fixes). * fuse: ioctl: translate enosys in outarg (bsc#1213524). * fuse: revalidate: do not invalidate if interrupted (bsc#1213523). * gve: set default duplex configuration to full (git-fixes). * gve: unify driver name usage (git-fixes). * hvcs: fix hvcs port reference counting (bsc#1213134 ltc#202861). * hvcs: get reference to tty in remove (bsc#1213134 ltc#202861). * hvcs: synchronize hotplug remove with port free (bsc#1213134 ltc#202861). * hvcs: use dev_groups to manage hvcs device attributes (bsc#1213134 ltc#202861). * hvcs: use driver groups to manage driver attributes (bsc#1213134 ltc#202861). * hvcs: use vhangup in hotplug remove(bsc#1213134 ltc#202861). * hwmon: (adm1275) allow setting sample averaging (git-fixes). * hwmon: (k10temp) enable amd3255 proc to show negative temperature (git- fixes). * hwmon: (nct7802) fix for temp6 (peci1) processed even if peci1 disabled (git-fixes). * hwmon: (pmbus/adm1275) fix problems with temperature monitoring on adm1272 (git-fixes). * i2c: xiic: defer xiic_wakeup() and __xiic_start_xfer() in xiic_process() (git-fixes). * i2c: xiic: do not try to handle more interrupt events after error (git- fixes). * iavf: fix out-of-bounds when setting channels on remove (git-fixes). * iavf: fix use-after-free in free_netdev (git-fixes). * iavf: use internal state to free traffic irqs (git-fixes). * ib/hfi1: use bitmap_zalloc() when applicable (git-fixes) * igc: check if hardware tx timestamping is enabled earlier (git-fixes). * igc: enable and fix rx hash usage by netstack (git-fixes). * igc: fix inserting of empty frame for launchtime (git-fixes). * igc: fix kernel panic during ndo_tx_timeout callback (git-fixes). * igc: fix launchtime before start of cycle (git-fixes). * igc: fix race condition in ptp tx code (git-fixes). * igc: handle pps start time programming for past time values (git-fixes). * igc: prevent garbled tx queue with xdp zerocopy (git-fixes). * igc: remove delay during tx ring configuration (git-fixes). * igc: set tp bit in 'supported' and 'advertising' fields of ethtool_link_ksettings (git-fixes). * igc: work around hw bug causing missing timestamps (git-fixes). * inotify: avoid reporting event with invalid wd (bsc#1213025). * input: i8042 - add clevo pcx0dx to i8042 quirk table (git-fixes). * input: iqs269a - do not poll during ati (git-fixes). * input: iqs269a - do not poll during suspend or resume (git-fixes). * jbd2: fix data missing when reusing bh which is ready to be checkpointed (bsc#1213095). * jdb2: do not refuse invalidation of already invalidated buffers (bsc#1213014). * jffs2: fix memory leak injffs2_do_fill_super (git-fixes). * jffs2: fix memory leak in jffs2_do_mount_fs (git-fixes). * jffs2: fix memory leak in jffs2_scan_medium (git-fixes). * jffs2: fix use-after-free in jffs2_clear_xattr_subsystem (git-fixes). * jffs2: gc deadlock reading a page that is used in jffs2_write_begin() (git- fixes). * jffs2: reduce stack usage in jffs2_build_xattr_subsystem() (git-fixes). * jfs: jfs_dmap: validate db_l2nbperpage while mounting (git-fixes). * kabi/severities: add vas symbols changed due to recent fix vas accelerators are directly tied to the architecture, there is no reason to have out-of- tree production drivers * kabi: do not check external trampolines for signature (kabi bsc#1207894 bsc#1211243). * kernel-binary.spec.in: remove superfluous %% in supplements fixes: 02b7735e0caf ("rpm/kernel-binary.spec.in: add enhances and supplements tags to in-tree kmps") * kselftest: vdso: fix accumulation of uninitialized ret when clock_realtime is undefined (git-fixes). * kvm: arm64: do not read a hw interrupt pending state in user context (git- fixes) * kvm: arm64: warn if accessing timer pending state outside of vcpu (bsc#1213620) * kvm: do not null dereference ops-> destroy (git-fixes) * kvm: downgrade two bug_ons to warn_on_once (git-fixes) * kvm: initialize debugfs_dentry when a vm is created to avoid null (git- fixes) * kvm: s390: pv: fix index value of replaced asce (git-fixes bsc#1213867). * kvm: vmx: inject #gp on encls if vcpu has paging disabled (cr0.pg==0) (git- fixes). * kvm: vmx: inject #gp, not #ud, if sgx2 encls leafs are unsupported (git- fixes). * kvm: vmx: restore vmx_vmexit alignment (git-fixes). * kvm: x86: account fastpath-only vm-exits in vcpu stats (git-fixes). * leds: trigger: netdev: recheck netdev_led_mode_linkup on dev rename (git- fixes). * libceph: harden msgr2.1 frame segment length checks (bsc#1213857). * media: atomisp: gmin_platform: fix out_len in gmin_get_config_dsm_var() (git-fixes). * media: cec: i2c: ch7322: also select regmap (git-fixes). * media: i2c: correct format propagation for st-mipid02 (git-fixes). * media: staging: atomisp: select v4l2_fwnode (git-fixes). * media: usb: check az6007_read() return value (git-fixes). * media: usb: siano: fix warning due to null work_func_t function pointer (git-fixes). * media: venus: helpers: fix align() of non power of two (git-fixes). * media: videodev2.h: fix struct v4l2_input tuner index comment (git-fixes). * memcg: drop kmem.limit_in_bytes (bsc#1208788, bsc#1212905). * mmc: core: disable trim on kingston emmc04g-m627 (git-fixes). * mmc: sdhci: fix dma configure compatibility issue when 64bit dma mode is used (git-fixes). * net/sched: sch_qfq: refactor parsing of netlink parameters (bsc#1213585). * net/sched: sch_qfq: reintroduce lmax bound check for mtu (bsc#1213585). * net: ena: fix shift-out-of-bounds in exponential backoff (git-fixes). * net: mana: add support for vlan tagging (bsc#1212301). * net: mana: batch ringing rx queue doorbell on receiving packets (bsc#1212901). * net: mana: use the correct wqe count for ringing rq doorbell (bsc#1212901). * net: phy: marvell10g: fix 88x3310 power up (git-fixes). * net: phy: prevent stale pointer dereference in phy_init() (git-fixes). * nfsd: add encoding of op_recall flag for write delegation (git-fixes). * nfsd: fix double fget() bug in __write_ports_addfd() (git-fixes). * nfsd: fix sparse warning (git-fixes). * nfsd: remove open coding of string copy (git-fixes). * nfsv4.1: always send a reclaim_complete after establishing lease (git- fixes). * nfsv4.1: freeze the session table upon receiving nfs4err_badsession (git- fixes). * ntb: amd: fix error handling in amd_ntb_pci_driver_init() (git-fixes). * ntb: idt: fix error handling in idt_pci_driver_init() (git-fixes). * ntb: intel: fix error handling in intel_ntb_pci_driver_init() (git-fixes). * ntb: ntb_tool: add check for devm_kcalloc (git-fixes). * ntb:ntb_transport: fix possible memory leak while device_register() fails (git-fixes). * nvme-multipath: support io stats on the mpath device (bsc#1210565). * nvme-pci: fix dma direction of unmapping integrity data (git-fixes). * nvme-pci: remove nvme_queue from nvme_iod (git-fixes). * nvme: introduce nvme_start_request (bsc#1210565). * ocfs2: check new file size on fallocate call (git-fixes). * ocfs2: fix use-after-free when unmounting read-only filesystem (git-fixes). * ocfs2: switch to security_inode_init_security() (git-fixes). * octeontx-af: fix hardware timestamp configuration (git-fixes). * octeontx2-af: move validation of ptp pointer before its usage (git-fixes). * octeontx2-pf: add additional check for mcam rules (git-fixes). * opp: fix use-after-free in lazy_opp_tables after probe deferral (git-fixes). * pci/pm: avoid putting elopos e2/s2/h2 pcie ports in d3cold (git-fixes). * pci: add function 1 dma alias quirk for marvell 88se9235 (git-fixes). * phy: hisilicon: fix an out of bounds check in hisi_inno_phy_probe() (git- fixes). * phy: revert "phy: remove soc_exynos4212 dep. from phy_exynos4x12_usb" (git- fixes). * phy: tegra: xusb: check return value of devm_kzalloc() (git-fixes). * phy: tegra: xusb: clear the driver reference in usb-phy dev (git-fixes). * pie: fix kernel-doc notation warning (git-fixes). * pinctrl: amd: detect internal gpio0 debounce handling (git-fixes). * pinctrl: amd: do not show `invalid config param` errors (git-fixes). * pinctrl: amd: fix mistake in handling clearing pins at startup (git-fixes). * pinctrl: amd: only use special debounce behavior for gpio 0 (git-fixes). * pinctrl: amd: use amd_pinconf_set() for all config options (git-fixes). * platform/x86: msi-laptop: fix rfkill out-of-sync on msi wind u100 (git- fixes). * powerpc/64: only warn if __pa()/__va() called with bad addresses (bsc#1194869). * powerpc/64s: fix vas mm use after free (bsc#1194869). * powerpc/book3s64/mm: fix directmap stats in/proc/meminfo (bsc#1194869). * powerpc/bpf: fix use of user_pt_regs in uapi (bsc#1194869). * powerpc/ftrace: remove ftrace init tramp once kernel init is complete (bsc#1194869). * powerpc/interrupt: do not read msr from interrupt_exit_kernel_prepare() (bsc#1194869). * powerpc/mm/dax: fix the condition when checking if altmap vmemap can cross- boundary (bsc#1150305 ltc#176097 git-fixes). * powerpc/mm: switch obsolete dssall to .long (bsc#1194869). * powerpc/powernv/sriov: perform null check on iov before dereferencing iov (bsc#1194869). * powerpc/powernv/vas: assign real address to rx_fifo in vas_rx_win_attr (bsc#1194869). * powerpc/prom_init: fix kernel config grep (bsc#1194869). * powerpc/secvar: fix refcount leak in format_show() (bsc#1194869). * powerpc/xics: fix refcount leak in icp_opal_init() (bsc#1194869). * powerpc: clean vdso32 and vdso64 directories (bsc#1194869). * powerpc: define get_cycles macro for arch-override (bsc#1194869). * powerpc: update ppc_save_regs to save current r1 in pt_regs (bsc#1194869). * pwm: ab8500: fix error code in probe() (git-fixes). * pwm: imx-tpm: force 'real_period' to be zero in suspend (git-fixes). * pwm: sysfs: do not apply state to already disabled pwms (git-fixes). * rdma/bnxt_re: fix hang during driver unload (git-fixes) * rdma/bnxt_re: prevent handling any completions after qp destroy (git-fixes) * rdma/core: update cma destination address on rdma_resolve_addr (git-fixes) * rdma/irdma: add missing read barriers (git-fixes) * rdma/irdma: fix data race on cqp completion stats (git-fixes) * rdma/irdma: fix data race on cqp request done (git-fixes) * rdma/irdma: fix op_type reporting in cqes (git-fixes) * rdma/irdma: report correct wc error (git-fixes) * rdma/mlx4: make check for invalid flags stricter (git-fixes) * rdma/mthca: fix crash when polling cq for shared qps (git-fixes) * rdma/rxe: fix access checks in rxe_check_bind_mw (git-fixes) * regmap: account for register length in smbus i/olimits (git-fixes). * regmap: drop initial version of maximum transfer length fixes (git-fixes). * revert "arm64: dts: zynqmp: add address-cells property to interrupt (git- fixes) * revert "debugfs, coccinelle: check for obsolete define_simple_attribute() usage" (git-fixes). * revert "drm/amd/display: edp do not add non-edid timings" (git-fixes). * revert "nfsv4: retry lock on old_stateid during delegation return" (git- fixes). * revert "usb: dwc3: core: enable autoretry feature in the controller" (git- fixes). * revert "usb: gadget: tegra-xudc: fix error check in tegra_xudc_powerdomain_init()" (git-fixes). * revert "usb: xhci: tegra: fix error check" (git-fixes). * revert "xhci: add quirk for host controllers that do not update endpoint dcs" (git-fixes). * rpm/check-for-config-changes: ignore also riscv_isa_ _and dynamic_sigframe they depend on config_toolchain_has__. * rpm: update dependency to match current kmod. * rsi: remove kernel-doc comment marker (git-fixes). * rxrpc, afs: fix selection of abort codes (git-fixes). * s390/ap: fix status returned by ap_aqic() (git-fixes bsc#1213259). * s390/ap: fix status returned by ap_qact() (git-fixes bsc#1213258). * s390/bpf: add expoline to tail calls (git-fixes bsc#1213870). * s390/dasd: fix hanging device after quiesce/resume (git-fixes bsc#1213810). * s390/debug: add _asm_s390_ prefix to header guard (git-fixes bsc#1213263). * s390/decompressor: specify __decompress() buf len to avoid overflow (git- fixes bsc#1213863). * s390/ipl: add missing intersection check to ipl_report handling (git-fixes bsc#1213871). * s390/percpu: add read_once() to arch_this_cpu_to_op_simple() (git-fixes bsc#1213252). * s390/qeth: fix vipa deletion (git-fixes bsc#1213713). * s390/vmem: fix empty page tables cleanup under kasan (git-fixes bsc#1213715). * s390: define runtime_discard_exit to fix link error with gnu ld < 2.36 (git-fixes bsc#1213264). * s390: discard .interp section (git-fixesbsc#1213247). * s390: introduce nospec_uses_trampoline() (git-fixes bsc#1213870). * scftorture: count reschedule ipis (git-fixes). * sched/debug: fix dentry leak in update_sched_domain_debugfs (git-fixes) * sched: fix debug && !schedstats warn (git-fixes) * scsi: lpfc: abort outstanding els cmds when mailbox timeout error is detected (bsc#1213756). * scsi: lpfc: avoid -wstringop-overflow warning (bsc#1213756). * scsi: lpfc: clean up sli-4 sysfs resource reporting (bsc#1213756). * scsi: lpfc: copyright updates for 14.2.0.14 patches (bsc#1213756). * scsi: lpfc: fix a possible data race in lpfc_unregister_fcf_rescan() (bsc#1213756). * scsi: lpfc: fix incorrect big endian type assignment in bsg loopback path (bsc#1213756). * scsi: lpfc: fix incorrect big endian type assignments in fdmi and vmid paths (bsc#1213756). * scsi: lpfc: fix lpfc_name struct packing (bsc#1213756). * scsi: lpfc: make fabric zone discovery more robust when handling unsolicited logo (bsc#1213756). * scsi: lpfc: pull out fw diagnostic dump log message from driver's trace buffer (bsc#1213756). * scsi: lpfc: qualify ndlp discovery state when processing rscn (bsc#1213756). * scsi: lpfc: refactor cpu affinity assignment paths (bsc#1213756). * scsi: lpfc: remove extra ndlp kref decrement in flogi cmpl for loop topology (bsc#1213756). * scsi: lpfc: replace all non-returning strlcpy() with strscpy() (bsc#1213756). * scsi: lpfc: replace one-element array with flexible-array member (bsc#1213756). * scsi: lpfc: revise ndlp kref handling for dev_loss_tmo_callbk and lpfc_drop_node (bsc#1213756). * scsi: lpfc: set establish image pair service parameter only for target functions (bsc#1213756). * scsi: lpfc: simplify fcp_abort transport callback log message (bsc#1213756). * scsi: lpfc: update lpfc version to 14.2.0.14 (bsc#1213756). * scsi: lpfc: use struct_size() helper (bsc#1213756). * scsi: qla2xxx: adjust iocb resource on qpair create (bsc#1213747). * scsi:qla2xxx: array index may go out of bound (bsc#1213747). * scsi: qla2xxx: avoid fcport pointer dereference (bsc#1213747). * scsi: qla2xxx: check valid rport returned by fc_bsg_to_rport() (bsc#1213747). * scsi: qla2xxx: correct the index of array (bsc#1213747). * scsi: qla2xxx: drop useless list_head (bsc#1213747). * scsi: qla2xxx: fix buffer overrun (bsc#1213747). * scsi: qla2xxx: fix command flush during tmf (bsc#1213747). * scsi: qla2xxx: fix deletion race condition (bsc#1213747). * scsi: qla2xxx: fix end of loop test (bsc#1213747). * scsi: qla2xxx: fix erroneous link up failure (bsc#1213747). * scsi: qla2xxx: fix error code in qla2x00_start_sp() (bsc#1213747). * scsi: qla2xxx: fix inconsistent tmf timeout (bsc#1213747). * scsi: qla2xxx: fix null pointer dereference in target mode (bsc#1213747). * scsi: qla2xxx: fix potential null pointer dereference (bsc#1213747). * scsi: qla2xxx: fix session hang in gnl (bsc#1213747). * scsi: qla2xxx: fix tmf leak through (bsc#1213747). * scsi: qla2xxx: limit tmf to 8 per function (bsc#1213747). * scsi: qla2xxx: pointer may be dereferenced (bsc#1213747). * scsi: qla2xxx: remove unused nvme_ls_waitq wait queue (bsc#1213747). * scsi: qla2xxx: replace one-element array with declare_flex_array() helper (bsc#1213747). * scsi: qla2xxx: silence a static checker warning (bsc#1213747). * scsi: qla2xxx: turn off noisy message log (bsc#1213747). * scsi: qla2xxx: update version to 10.02.08.400-k (bsc#1213747). * scsi: qla2xxx: update version to 10.02.08.500-k (bsc#1213747). * scsi: qla2xxx: use vmalloc_array() and vcalloc() (bsc#1213747). * security: keys: modify mismatched function name (git-fixes). * selftests: mptcp: depend on syn_cookies (git-fixes). * selftests: mptcp: sockopt: return error if wrong mark (git-fixes). * selftests: rtnetlink: remove netdevsim device after ipsec offload test (git- fixes). * selftests: tc: add 'ct' action kconfig dep (git-fixes). * selftests: tc: add conntrack procfs kconfig(git-fixes). * selftests: tc: set timeout to 15 minutes (git-fixes). * serial: qcom-geni: drop bogus runtime pm state update (git-fixes). * serial: sifive: fix sifive_serial_console_setup() section (git-fixes). * signal/powerpc: on swapcontext failure force sigsegv (bsc#1194869). * signal: replace force_sigsegv(sigsegv) with force_fatal_sig(sigsegv) (bsc#1194869). * smb3: do not reserve too many oplock credits (bsc#1193629). * smb3: missing null check in smb2_change_notify (bsc#1193629). * smb: client: fix broken file attrs with nodfs mounts (bsc#1193629). * smb: client: fix missed ses refcounting (git-fixes). * smb: client: fix parsing of source mount option (bsc#1193629). * smb: client: fix shared dfs root mounts with different prefixes (bsc#1193629). * smb: client: fix warning in cifs_match_super() (bsc#1193629). * smb: client: fix warning in cifs_smb3_do_mount() (bsc#1193629). * smb: client: fix warning in cifsfindfirst() (bsc#1193629). * smb: client: fix warning in cifsfindnext() (bsc#1193629). * smb: client: fix warning in generic_ip_connect() (bsc#1193629). * smb: client: improve dfs mount check (bsc#1193629). * smb: client: remove redundant pointer 'server' (bsc#1193629). * smb: delete an unnecessary statement (bsc#1193629). * smb: move client and server files to common directory fs/smb (bsc#1193629). * smb: remove obsolete comment (bsc#1193629). * soundwire: qcom: fix storing port config out-of-bounds (git-fixes). * soundwire: qcom: update status correctly with mask (git-fixes). * spi: bcm-qspi: return error if neither hif_mspi nor mspi is available (git- fixes). * spi: bcm63xx: fix max prepend length (git-fixes). * staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext() (git- fixes). * staging: r8712: fix memory leak in _r8712_init_xmit_priv() (git-fixes). * sunrpc: always free ctxt when freeing deferred request (git-fixes). * sunrpc: double free xprt_ctxt while still in use (git-fixes). * sunrpc: fixtrace_svc_register() call site (git-fixes). * sunrpc: fix uaf in svc_tcp_listen_data_ready() (git-fixes). * sunrpc: remove dead code in svc_tcp_release_rqst() (git-fixes). * sunrpc: remove the maximum number of retries in call_bind_status (git- fixes). * svcrdma: prevent page release when nothing was received (git-fixes). * tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation (git- fixes). * tpm_tis: explicitly check for error code (git-fixes). * tty: n_gsm: fix uaf in gsm_cleanup_mux (git-fixes). * tty: serial: fsl_lpuart: add earlycon for imx8ulp platform (git-fixes). * ubi: ensure that vid header offset + vid header size dirty' race between do_tmpfile() and writeback work (git- fixes). * ubifs: fix aa deadlock when setting xattr for encrypted file (git-fixes). * ubifs: fix build errors as symbol undefined (git-fixes). * ubifs: fix deadlock in concurrent rename whiteout and inode writeback (git- fixes). * ubifs: fix memory leak in alloc_wbufs() (git-fixes). * ubifs: fix memory leak in do_rename (git-fixes). * ubifs: fix read out-of-bounds in ubifs_wbuf_write_nolock() (git-fixes). * ubifs: fix to add refcount once page is set private (git-fixes). * ubifs: fix wrong dirty space budget for dirty inode (git-fixes). * ubifs: free memory for tmpfile name (git-fixes). * ubifs: rectify space amount budget for mkdir/tmpfile operations (git-fixes). * ubifs: rectify space budget for ubifs_symlink() if symlink is encrypted (git-fixes). * ubifs: rectify space budget for ubifs_xrename() (git-fixes). * ubifs: rename whiteout atomically (git-fixes). * ubifs: rename_whiteout: correct old_dir size computing (git-fixes). * ubifs: rename_whiteout: fix double free for whiteout_ui-> data (git-fixes). * ubifs: reserve one leb for each journal head while doing budget (git-fixes). * ubifs: setflags: make dirtied_ino_d 8 bytes aligned (git-fixes). * ubifs: ubifs_writepage: mark page dirty after writing inode failed (git- fixes). * udf: avoiddouble brelse() in udf_rename() (bsc#1213032). * udf: define efscorrupted error code (bsc#1213038). * udf: detect system inodes linked into directory hierarchy (bsc#1213114). * udf: discard preallocation before extending file with a hole (bsc#1213036). * udf: do not bother looking for prealloc extents if i_lenextents matches i_size (bsc#1213035). * udf: do not bother merging very long extents (bsc#1213040). * udf: do not update file length for failed writes to inline files (bsc#1213041). * udf: fix error handling in udf_new_inode() (bsc#1213112). * udf: fix extending file within last block (bsc#1213037). * udf: fix preallocation discarding at indirect extent boundary (bsc#1213034). * udf: preserve link count of system files (bsc#1213113). * udf: truncate added extents on failed expansion (bsc#1213039). * update config and supported.conf files due to renaming. * update suse/rdma-mthca-fix-crash-when-polling-cq-for-shared-qps. (git-fixes bsc#1212604). added bug reference. * usb: dwc2: fix some error handling paths (git-fixes). * usb: dwc2: platform: improve error reporting for problems during .remove() (git-fixes). * usb: dwc3: do not reset device side if dwc3 was configured as host-only (git-fixes). * usb: dwc3: pci: skip byt gpio lookup table for hardwired phy (git-fixes). * usb: gadget: core: remove unbalanced mutex_unlock in usb_gadget_activate (git-fixes). * usb: gadget: udc: core: offload usb_udc_vbus_handler processing (git-fixes). * usb: gadget: udc: core: prevent soft_connect_store() race (git-fixes). * usb: serial: option: add lara-r6 01b pids (git-fixes). * usb: xhci-mtk: set the dma max_seg_size (git-fixes). * vhost: support packed when setting-getting vring_base (git-fixes). * vhost_net: revert upend_idx only on retriable error (git-fixes). * virtio-net: maintain reverse cleanup order (git-fixes). * virtio_net: fix error unwinding of xdp initialization (git-fixes). * wifi: airo: avoid uninitialized warning in airo_get_rate()(git-fixes). * wifi: ray_cs: drop useless status variable in parse_addr() (git-fixes). * wifi: ray_cs: utilize strnlen() in parse_addr() (git-fixes). * wifi: rtw89: debug: fix error code in rtw89_debug_priv_send_h2c_set() (git- fixes). * wl3501_cs: use eth_hw_addr_set() (git-fixes). * writeback: fix call of incorrect macro (bsc#1213024). * x86/pvh: obtain vga console info in dom0 (git-fixes). * x86: fix .brk attribute in linker script (git-fixes). * xen/blkfront: only check req_fua for writes (git-fixes). * xen/pvcalls-back: fix double frees with pvcalls_new_active_socket() (git- fixes). * xfs: ail needs asynchronous cil forcing (bsc#1211811). * xfs: async cil flushes need pending pushes to be made stable (bsc#1211811). * xfs: attach iclog callbacks in xlog_cil_set_ctx_write_state() (bsc#1211811). * xfs: cil work is serialised, not pipelined (bsc#1211811). * xfs: clean up the rtbitmap fsmap backend (git-fixes). * xfs: do not deplete the reserve pool when trying to shrink the fs (git- fixes). * xfs: do not reverse order of items in bulk ail insertion (git-fixes). * xfs: do not run shutdown callbacks on active iclogs (bsc#1211811). * xfs: drop async cache flushes from cil commits (bsc#1211811). * xfs: factor out log write ordering from xlog_cil_push_work() (bsc#1211811). * xfs: fix getfsmap reporting past the last rt extent (git-fixes). * xfs: fix integer overflows in the fsmap rtbitmap and logdev backends (git- fixes). * xfs: fix interval filtering in multi-step fsmap queries (git-fixes). * xfs: fix logdev fsmap query result filtering (git-fixes). * xfs: fix off-by-one error when the last rt extent is in use (git-fixes). * xfs: fix uninitialized variable access (git-fixes). * xfs: make fsmap backend function key parameters const (git-fixes). * xfs: make the record pointer passed to query_range functions const (git- fixes). * xfs: move the cil workqueue to the cil (bsc#1211811). * xfs: move xlog_commit_record to xfs_log_cil.c(bsc#1211811). * xfs: order cil checkpoint start records (bsc#1211811). * xfs: pass a cil context to xlog_write() (bsc#1211811). * xfs: pass explicit mount pointer to rtalloc query functions (git-fixes). * xfs: rework xlog_state_do_callback() (bsc#1211811). * xfs: run callbacks before waking waiters in xlog_state_shutdown_callbacks (bsc#1211811). * xfs: separate out log shutdown callback processing (bsc#1211811). * xfs: wait iclog complete before tearing down ail (bsc#1211811). * xfs: xlog_state_ioerror must die (bsc#1211811). * xhci: fix resume issue of some zhaoxin hosts (git-fixes). * xhci: fix trb prefetch issue of zhaoxin hosts (git-fixes). * xhci: show zhaoxin xhci root hub speed correctly (git-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE Important update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap Micro 5.3 zypper in -t patch openSUSE-Leap-Micro-5.3-2023-3318=1 * openSUSE Leap Micro 5.4 zypper in -t patch openSUSE-Leap-Micro-5.4-2023-3318=1 * openSUSE Leap 15.4 zypper in -t patch openSUSE-SLE-15.4-2023-3318=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-3318=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-3318=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-3318=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-3318=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2023-3318=1 * SUSE Real Time Module 15-SP4 zypper in -t patch SUSE-SLE-Module-RT-15-SP4-2023-3318=1 ## Package List: * openSUSE Leap Micro 5.3 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.46.1 * openSUSELeap Micro 5.3 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.46.1 * kernel-rt-debuginfo-5.14.21-150400.15.46.1 * openSUSE Leap Micro 5.4 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.46.1 * openSUSE Leap Micro 5.4 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.46.1 * kernel-rt-debuginfo-5.14.21-150400.15.46.1 * openSUSE Leap 15.4 (x86_64) * kernel-syms-rt-5.14.21-150400.15.46.1 * cluster-md-kmp-rt-5.14.21-150400.15.46.1 * ocfs2-kmp-rt-5.14.21-150400.15.46.1 * cluster-md-kmp-rt-debuginfo-5.14.21-150400.15.46.1 * kernel-rt-debuginfo-5.14.21-150400.15.46.1 * kernel-rt-devel-debuginfo-5.14.21-150400.15.46.1 * kernel-rt_debug-devel-debuginfo-5.14.21-150400.15.46.1 * kernel-rt_debug-debuginfo-5.14.21-150400.15.46.1 * ocfs2-kmp-rt-debuginfo-5.14.21-150400.15.46.1 * gfs2-kmp-rt-debuginfo-5.14.21-150400.15.46.1 * kernel-rt-devel-5.14.21-150400.15.46.1 * dlm-kmp-rt-debuginfo-5.14.21-150400.15.46.1 * kernel-rt_debug-debugsource-5.14.21-150400.15.46.1 * dlm-kmp-rt-5.14.21-150400.15.46.1 * kernel-rt_debug-devel-5.14.21-150400.15.46.1 * kernel-rt-debugsource-5.14.21-150400.15.46.1 * gfs2-kmp-rt-5.14.21-150400.15.46.1 * openSUSE Leap 15.4 (noarch) * kernel-devel-rt-5.14.21-150400.15.46.1 * kernel-source-rt-5.14.21-150400.15.46.1 * openSUSE Leap 15.4 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.46.1 * kernel-rt_debug-5.14.21-150400.15.46.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.46.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.46.1 * kernel-rt-debuginfo-5.14.21-150400.15.46.1 * SUSE Linux Enterprise Micro 5.3 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.46.1 * SUSE Linux Enterprise Micro 5.3 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.46.1 * kernel-rt-debuginfo-5.14.21-150400.15.46.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (nosrc x86_64) *kernel-rt-5.14.21-150400.15.46.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.46.1 * kernel-rt-debuginfo-5.14.21-150400.15.46.1 * SUSE Linux Enterprise Micro 5.4 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.46.1 * SUSE Linux Enterprise Micro 5.4 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.46.1 * kernel-rt-debuginfo-5.14.21-150400.15.46.1 * SUSE Linux Enterprise Live Patching 15-SP4 (x86_64) * kernel-livepatch-5_14_21-150400_15_46-rt-debuginfo-1-150400.1.5.1 * kernel-livepatch-SLE15-SP4-RT_Update_11-debugsource-1-150400.1.5.1 * kernel-livepatch-5_14_21-150400_15_46-rt-1-150400.1.5.1 * SUSE Real Time Module 15-SP4 (x86_64) * kernel-syms-rt-5.14.21-150400.15.46.1 * cluster-md-kmp-rt-5.14.21-150400.15.46.1 * ocfs2-kmp-rt-5.14.21-150400.15.46.1 * cluster-md-kmp-rt-debuginfo-5.14.21-150400.15.46.1 * kernel-rt-debuginfo-5.14.21-150400.15.46.1 * kernel-rt-devel-debuginfo-5.14.21-150400.15.46.1 * kernel-rt_debug-devel-debuginfo-5.14.21-150400.15.46.1 * kernel-rt_debug-debuginfo-5.14.21-150400.15.46.1 * ocfs2-kmp-rt-debuginfo-5.14.21-150400.15.46.1 * gfs2-kmp-rt-debuginfo-5.14.21-150400.15.46.1 * kernel-rt-devel-5.14.21-150400.15.46.1 * dlm-kmp-rt-debuginfo-5.14.21-150400.15.46.1 * kernel-rt_debug-debugsource-5.14.21-150400.15.46.1 * dlm-kmp-rt-5.14.21-150400.15.46.1 * kernel-rt_debug-devel-5.14.21-150400.15.46.1 * kernel-rt-debugsource-5.14.21-150400.15.46.1 * gfs2-kmp-rt-5.14.21-150400.15.46.1 * SUSE Real Time Module 15-SP4 (noarch) * kernel-devel-rt-5.14.21-150400.15.46.1 * kernel-source-rt-5.14.21-150400.15.46.1 * SUSE Real Time Module 15-SP4 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.46.1 * kernel-rt_debug-5.14.21-150400.15.46.1 ## References: * https://www.suse.com/security/cve/CVE-2022-40982.html * https://www.suse.com/security/cve/CVE-2023-0459.html * https://www.suse.com/security/cve/CVE-2023-20569.html *https://www.suse.com/security/cve/CVE-2023-20593.html * https://www.suse.com/security/cve/CVE-2023-21400.html * https://www.suse.com/security/cve/CVE-2023-2156.html * https://www.suse.com/security/cve/CVE-2023-2166.html * https://www.suse.com/security/cve/CVE-2023-2985.html * https://www.suse.com/security/cve/CVE-2023-31083.html * https://www.suse.com/security/cve/CVE-2023-3117.html * https://www.suse.com/security/cve/CVE-2023-31248.html * https://www.suse.com/security/cve/CVE-2023-3268.html * https://www.suse.com/security/cve/CVE-2023-3390.html * https://www.suse.com/security/cve/CVE-2023-35001.html * https://www.suse.com/security/cve/CVE-2023-3567.html * https://www.suse.com/security/cve/CVE-2023-3609.html * https://www.suse.com/security/cve/CVE-2023-3611.html * https://www.suse.com/security/cve/CVE-2023-3776.html * https://www.suse.com/security/cve/CVE-2023-3812.html * https://www.suse.com/security/cve/CVE-2023-4004.html * https://bugzilla.suse.com/show_bug.cgi?id=1150305 * https://bugzilla.suse.com/show_bug.cgi?id=1193629 * https://bugzilla.suse.com/show_bug.cgi?id=1194869 * https://bugzilla.suse.com/show_bug.cgi?id=1206418 * https://bugzilla.suse.com/show_bug.cgi?id=1207129 * https://bugzilla.suse.com/show_bug.cgi?id=1207894 * https://bugzilla.suse.com/show_bug.cgi?id=1208788 * https://bugzilla.suse.com/show_bug.cgi?id=1210565 * https://bugzilla.suse.com/show_bug.cgi?id=1210584 * https://bugzilla.suse.com/show_bug.cgi?id=1210627 * https://bugzilla.suse.com/show_bug.cgi?id=1210780 * https://bugzilla.suse.com/show_bug.cgi?id=1210853 * https://bugzilla.suse.com/show_bug.cgi?id=1211131 * https://bugzilla.suse.com/show_bug.cgi?id=1211243 * https://bugzilla.suse.com/show_bug.cgi?id=1211738 * https://bugzilla.suse.com/show_bug.cgi?id=1211811 * https://bugzilla.suse.com/show_bug.cgi?id=1211867 * https://bugzilla.suse.com/show_bug.cgi?id=1212301 * https://bugzilla.suse.com/show_bug.cgi?id=1212502 *https://bugzilla.suse.com/show_bug.cgi?id=1212604 * https://bugzilla.suse.com/show_bug.cgi?id=1212846 * https://bugzilla.suse.com/show_bug.cgi?id=1212901 * https://bugzilla.suse.com/show_bug.cgi?id=1212905 * https://bugzilla.suse.com/show_bug.cgi?id=1213010 * https://bugzilla.suse.com/show_bug.cgi?id=1213011 * https://bugzilla.suse.com/show_bug.cgi?id=1213012 * https://bugzilla.suse.com/show_bug.cgi?id=1213013 * https://bugzilla.suse.com/show_bug.cgi?id=1213014 * https://bugzilla.suse.com/show_bug.cgi?id=1213015 * https://bugzilla.suse.com/show_bug.cgi?id=1213016 * https://bugzilla.suse.com/show_bug.cgi?id=1213017 * https://bugzilla.suse.com/show_bug.cgi?id=1213018 * https://bugzilla.suse.com/show_bug.cgi?id=1213019 * https://bugzilla.suse.com/show_bug.cgi?id=1213020 * https://bugzilla.suse.com/show_bug.cgi?id=1213021 * https://bugzilla.suse.com/show_bug.cgi?id=1213024 * https://bugzilla.suse.com/show_bug.cgi?id=1213025 * https://bugzilla.suse.com/show_bug.cgi?id=1213032 * https://bugzilla.suse.com/show_bug.cgi?id=1213034 * https://bugzilla.suse.com/show_bug.cgi?id=1213035 * https://bugzilla.suse.com/show_bug.cgi?id=1213036 * https://bugzilla.suse.com/show_bug.cgi?id=1213037 * https://bugzilla.suse.com/show_bug.cgi?id=1213038 * https://bugzilla.suse.com/show_bug.cgi?id=1213039 * https://bugzilla.suse.com/show_bug.cgi?id=1213040 * https://bugzilla.suse.com/show_bug.cgi?id=1213041 * https://bugzilla.suse.com/show_bug.cgi?id=1213059 * https://bugzilla.suse.com/show_bug.cgi?id=1213061 * https://bugzilla.suse.com/show_bug.cgi?id=1213087 * https://bugzilla.suse.com/show_bug.cgi?id=1213088 * https://bugzilla.suse.com/show_bug.cgi?id=1213089 * https://bugzilla.suse.com/show_bug.cgi?id=1213090 * https://bugzilla.suse.com/show_bug.cgi?id=1213092 * https://bugzilla.suse.com/show_bug.cgi?id=1213093 * https://bugzilla.suse.com/show_bug.cgi?id=1213094 * https://bugzilla.suse.com/show_bug.cgi?id=1213095 *https://bugzilla.suse.com/show_bug.cgi?id=1213096 * https://bugzilla.suse.com/show_bug.cgi?id=1213098 * https://bugzilla.suse.com/show_bug.cgi?id=1213099 * https://bugzilla.suse.com/show_bug.cgi?id=1213100 * https://bugzilla.suse.com/show_bug.cgi?id=1213102 * https://bugzilla.suse.com/show_bug.cgi?id=1213103 * https://bugzilla.suse.com/show_bug.cgi?id=1213104 * https://bugzilla.suse.com/show_bug.cgi?id=1213105 * https://bugzilla.suse.com/show_bug.cgi?id=1213106 * https://bugzilla.suse.com/show_bug.cgi?id=1213107 * https://bugzilla.suse.com/show_bug.cgi?id=1213108 * https://bugzilla.suse.com/show_bug.cgi?id=1213109 * https://bugzilla.suse.com/show_bug.cgi?id=1213110 * https://bugzilla.suse.com/show_bug.cgi?id=1213111 * https://bugzilla.suse.com/show_bug.cgi?id=1213112 * https://bugzilla.suse.com/show_bug.cgi?id=1213113 * https://bugzilla.suse.com/show_bug.cgi?id=1213114 * https://bugzilla.suse.com/show_bug.cgi?id=1213134 * https://bugzilla.suse.com/show_bug.cgi?id=1213167 * https://bugzilla.suse.com/show_bug.cgi?id=1213245 * https://bugzilla.suse.com/show_bug.cgi?id=1213247 * https://bugzilla.suse.com/show_bug.cgi?id=1213252 * https://bugzilla.suse.com/show_bug.cgi?id=1213258 * https://bugzilla.suse.com/show_bug.cgi?id=1213259 * https://bugzilla.suse.com/show_bug.cgi?id=1213263 * https://bugzilla.suse.com/show_bug.cgi?id=1213264 * https://bugzilla.suse.com/show_bug.cgi?id=1213272 * https://bugzilla.suse.com/show_bug.cgi?id=1213286 * https://bugzilla.suse.com/show_bug.cgi?id=1213287 * https://bugzilla.suse.com/show_bug.cgi?id=1213304 * https://bugzilla.suse.com/show_bug.cgi?id=1213523 * https://bugzilla.suse.com/show_bug.cgi?id=1213524 * https://bugzilla.suse.com/show_bug.cgi?id=1213543 * https://bugzilla.suse.com/show_bug.cgi?id=1213585 * https://bugzilla.suse.com/show_bug.cgi?id=1213586 * https://bugzilla.suse.com/show_bug.cgi?id=1213588 * https://bugzilla.suse.com/show_bug.cgi?id=1213620 *https://bugzilla.suse.com/show_bug.cgi?id=1213653 * https://bugzilla.suse.com/show_bug.cgi?id=1213705 * https://bugzilla.suse.com/show_bug.cgi?id=1213713 * https://bugzilla.suse.com/show_bug.cgi?id=1213715 * https://bugzilla.suse.com/show_bug.cgi?id=1213747 * https://bugzilla.suse.com/show_bug.cgi?id=1213756 * https://bugzilla.suse.com/show_bug.cgi?id=1213759 * https://bugzilla.suse.com/show_bug.cgi?id=1213777 * https://bugzilla.suse.com/show_bug.cgi?id=1213810 * https://bugzilla.suse.com/show_bug.cgi?id=1213812 * https://bugzilla.suse.com/show_bug.cgi?id=1213856 * https://bugzilla.suse.com/show_bug.cgi?id=1213857 * https://bugzilla.suse.com/show_bug.cgi?id=1213863 * https://bugzilla.suse.com/show_bug.cgi?id=1213867 * https://bugzilla.suse.com/show_bug.cgi?id=1213870 * https://bugzilla.suse.com/show_bug.cgi?id=1213871 . SUSE Linux Enterprise 15 SP4 RT kernel security update resolves 22 vulnerabilities and includes 91 patches - system restart needed post installation.. openSUSE Security, Kernel Update, Critical Fixes. . Severity: Important. LinuxSecurity.com Team
Aug 15, 2023
•Important
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!