[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2015:0658-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":18,"duplicates":19,"related":20,"reserved_at":9,"published_at":23,"modified_at":24,"state":9,"summary":25,"references_raw":27,"kevs":164,"epss":9,"epss_history":165,"metrics":166,"affected":167},"SUSE-SU-2015:0658-1","Security Update for Linux Kernel\n\n\nThe SUSE Linux Enterprise Server 12 kernel was updated to 3.12.39 to\nreceive various security and bugfixes.\n\nFollowing security bugs were fixed:\n- CVE-2015-0777: The XEN usb backend could leak information to the guest\n  system due to copying uninitialized memory.\n\n- CVE-2015-2150: Xen and the Linux kernel did not properly restrict access\n  to PCI command registers, which might have allowed local guest users to\n  cause a denial of service (non-maskable interrupt and host crash) by\n  disabling the (1) memory or (2) I/O decoding for a PCI Express device\n  and then accessing the device, which triggers an Unsupported Request\n  (UR) response.\n\nThe following non-security bugs were fixed:\n- Added Little Endian support to vtpm module (bsc#918620).\n- Add support for pnfs block layout. Patches not included by default yet\n- ALSA: hda - Fix regression of HD-audio controller fallback modes (bsc#921313).\n- btrfs: add missing blk_finish_plug in btrfs_sync_log() (bnc#922284).\n- btrfs: cleanup orphans while looking up default subvolume (bsc#914818).\n- btrfs: do not ignore errors from btrfs_lookup_xattr in do_setxattr (bnc#922272).\n- btrfs: fix BUG_ON in btrfs_orphan_add() when delete unused block group (bnc#922278).\n- btrfs: fix data loss in the fast fsync path (bnc#922275).\n- btrfs: fix fsync data loss after adding hard link to inode (bnc#922275).\n- cgroup: revert cgroup_mutex removal from idr_remove (bnc#918644).\n- cifs: fix use-after-free bug in find_writable_file (bnc#909477).\n- crypto: rng - RNGs must return 0 in success case (bsc#920805).\n- crypto: testmgr - fix RNG return code enforcement (bsc#920805).\n- exit: Always reap resource stats in __exit_signal() (Time scalability).\n- fork: report pid reservation failure properly (bnc#909684).\n- fsnotify: Fix handling of renames in audit (bnc#915200).\n- HID: hyperv: match wait_for_completion_timeout return type.\n- hv: address compiler warnings for hv_fcopy_daemon.c.\n- hv: address compiler warnings for hv_kvp_daemon.c.\n- hv: check vmbus_device_create() return value in vmbus_process_offer().\n- hv: do not add redundant / in hv_start_fcopy().\n- hv: hv_balloon: Do not post pressure status from interrupt context.\n- hv: hv_balloon: Fix a locking bug in the balloon driver.\n- hv: hv_balloon: Make adjustments in computing the floor.\n- hv: hv_fcopy: drop the obsolete message on transfer failure.\n- hv: kvp_daemon: make IPv6-only-injection work.\n- hv: remove unused bytes_written from kvp_update_file().\n- hv: rename sc_lock to the more generic lock.\n- hv: vmbus: Fix a bug in vmbus_establish_gpadl().\n- hv: vmbus: hv_process_timer_expiration() can be static.\n- hv: vmbus: Implement a clockevent device.\n- hv: vmbus: serialize Offer and Rescind offer.\n- hv: vmbus: Support a vmbus API for efficiently sending page arrays.\n- hv: vmbus: Use get_cpu() to get the current CPU.\n- hyperv: fix sparse warnings.\n- hyperv: Fix the error processing in netvsc_send().\n- hyperv: match wait_for_completion_timeout return type.\n- hyperv: netvsc.c: match wait_for_completion_timeout return type.\n- iommu/vt-d: Fix dmar_domain leak in iommu_attach_device (bsc#924460).\n- kabi, mm: prevent endless growth of anon_vma hierarchy (bnc#904242).\n- kABI: protect linux/namei.h include in procfs.\n- kABI: protect struct hif_scatter_req.\n- kabi/severities: Stop maintaining the kgraft kabi\n- kernel/sched/clock.c: add another clock for use with the soft lockup watchdog (bsc#919939).\n- kgr: Allow patches to require an exact kernel version (bnc#920615).\n- KVM: PPC: Book3S HV: ptes are big endian (bsc#920839).\n- mm: convert the rest to new page table lock api (the suse-only cases) (fate#315482).\n- mm: fix anon_vma->degree underflow in anon_vma endless growing prevention (bnc#904242).\n- mm: fix corner case in anon_vma endless growing prevention (bnc#904242).\n- mm: prevent endless growth of anon_vma hierarchy (bnc#904242).\n- mm: prevent endless growth of anon_vma hierarchy  mm: prevent endless growth of anon_vma hierarchy (bnc#904242).\n- mm: vmscan: count only dirty pages as congested (VM Performance, bnc#910517).\n- module: Clean up ro/nx after early module load failures (bsc#921990).\n- module: set nx before marking module MODULE_STATE_COMING (bsc#921990).\n- net: add sysfs helpers for netdev_adjacent logic (bnc#915660).\n- net: correct error path in rtnl_newlink() (bnc#915660).\n- net: fix creation adjacent device symlinks (bnc#915660).\n- net: prevent of emerging cross-namespace symlinks (bnc#915660).\n- net: rename sysfs symlinks on device name change (bnc#915660).\n- nfs: cap request size to fit a kmalloced page array (bnc#898675).\n- nfs: commit layouts in fdatasync (bnc#898675).\n- NFSv4.1: Do not trust attributes if a pNFS LAYOUTCOMMIT is outstanding (bnc#898675).\n- NFSv4.1: Ensure that the layout recall callback matches layout stateids (bnc#898675).\n- NFSv4.1: Ensure that we free existing layout segments if we get a new layout (bnc#898675).\n- NFSv4.1: Fix a race in nfs4_write_inode (bnc#898675).\n- NFSv4.1: Fix wraparound issues in pnfs_seqid_is_newer() (bnc#898675).\n- NFSv4.1: Minor optimisation in get_layout_by_fh_locked() (bnc#898675).\n- NFSv4: Do not update the open stateid unless it is newer than the old one (bnc#898675).\n- pnfs: add a common GETDEVICELIST implementation (bnc#898675).\n- pnfs: add a nfs4_get_deviceid helper (bnc#898675).\n- pnfs: add flag to force read-modify-write in ->write_begin (bnc#898675).\n- pnfs: add return_range method (bnc#898675).\n- pnfs: allow splicing pre-encoded pages into the layoutcommit args (bnc#898675).\n- pnfs: avoid using stale stateids after layoutreturn (bnc#898675).\n- pnfs/blocklayout: allocate separate pages for the layoutcommit payload (bnc#898675).\n- pnfs/blocklayout: correctly decrement extent length (bnc#898675).\n- pnfs/blocklayout: do not set pages uptodate (bnc#898675).\n- pnfs/blocklayout: Fix a 64-bit division/remainder issue in bl_map_stripe (bnc#898675).\n- pnfs/blocklayout: implement the return_range method (bnc#898675).\n- pnfs/blocklayout: improve GETDEVICEINFO error reporting (bnc#898675).\n- pnfs/blocklayout: include vmalloc.h for __vmalloc (bnc#898675).\n- pnfs/blocklayout: in-kernel GETDEVICEINFO XDR parsing (bnc#898675).\n- pnfs/blocklayout: move all rpc_pipefs related code into a single file (bnc#898675).\n- pnfs/blocklayout: move extent processing to blocklayout.c (bnc#898675).\n- pnfs/blocklayout: plug block queues (bnc#898675).\n- pnfs/blocklayout: refactor extent processing (bnc#898675).\n- pnfs/blocklayout: reject pnfs blocksize larger than page size (bnc#898675).\n- pNFS/blocklayout: Remove a couple of unused variables (bnc#898675).\n- pnfs/blocklayout: remove read-modify-write handling in bl_write_pagelist (bnc#898675).\n- pnfs/blocklayout: remove some debugging (bnc#898675).\n- pnfs/blocklayout: return layouts on setattr (bnc#898675).\n- pnfs/blocklayout: rewrite extent tracking (bnc#898675).\n- pnfs/blocklayout: use the device id cache (bnc#898675).\n- pnfs: do not check sequence on new stateids in layoutget (bnc#898675).\n- pnfs: do not pass uninitialized lsegs to ->free_lseg (bnc#898675).\n- pnfs: enable CB_NOTIFY_DEVICEID support (bnc#898675).\n- pnfs: factor GETDEVICEINFO implementations (bnc#898675).\n- pnfs: force a layout commit when encountering busy segments during recall (bnc#898675).\n- pnfs: remove GETDEVICELIST implementation (bnc#898675).\n- pnfs: retry after a bad stateid error from layoutget (bnc#898675).\n- powerpc: add running_clock for powerpc to prevent spurious softlockup warnings (bsc#919939).\n- powerpc/pseries: Fix endian problems with LE migration (bsc#918584).\n- remove cgroup_mutex around deactivate_super because it might be dangerous.\n- rtmutex: Document pi chain walk (mutex scalability).\n- rtmutex: No need to keep task ref for lock owner check (mutex scalability).\n- rtmutex: Simplify rtmutex_slowtrylock() (mutex scalability).\n- rtnetlink: fix a memory leak when ->newlink fails (bnc#915660).\n- sched: Change thread_group_cputime() to use for_each_thread() (Time scalability).\n- sched: replace INIT_COMPLETION with reinit_completion.\n- sched, time: Atomically increment stime & utime (Time scalability).\n- scsi: storvsc: Always send on the selected outgoing channel.\n- scsi: storvsc: Do not assume that the scatterlist is not chained.\n- scsi: storvsc: Enable clustering.\n- scsi: storvsc: Fix a bug in copy_from_bounce_buffer().\n- scsi: storvsc: Increase the ring buffer size.\n- scsi: storvsc: Retrieve information about the capability of the target.\n- scsi: storvsc: Set the tablesize based on the information given by the host.\n- scsi: storvsc: Size the queue depth based on the ringbuffer size.\n- storvsc: fix a bug in storvsc limits.\n- storvsc: force discovery of LUNs that may have been removed.\n- storvsc: force SPC-3 compliance on win8 and win8 r2 hosts.\n- storvsc: in responce to a scan event, scan the host.\n- take read_seqbegin_or_lock() and friends to seqlock.h (Time scalability).\n- tcp: prevent fetching dst twice in early demux code (bnc#903997 bnc#919719).\n- time, signal: Protect resource use statistics with seqlock -kabi (Time scalability).\n- time, signal: Protect resource use statistics with seqlock (Time scalability).\n- udp: only allow UFO for packets from SOCK_DGRAM sockets (bnc#909309).\n- Update Xen patches to 3.12.39.\n- virtio: rng: add derating factor for use by hwrng core (bsc#918615).\n- x86, AVX-512: AVX-512 Feature Detection (bsc#921527).\n- x86, AVX-512: Enable AVX-512 States Context Switch (bsc#921527).\n- xenbus: add proper handling of XS_ERROR from Xenbus for transactions.\n- xfs: xfs_alloc_fix_minleft can underflow near ENOSPC (bnc#913080).\n",null,[],[],[],[14,16],{"_key":15},"CVE-2015-0777",{"_key":17},"CVE-2015-2150",[],[],[21,22],{"_key":15},{"_key":17},"2015-03-26T17:36:44Z","2026-02-04T03:16:12.384900Z",{"cisa_kev":26,"cisa_ransomware":26,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[28,34,39,43,47,51,55,59,63,67,71,75,79,83,87,91,95,99,103,107,111,115,119,123,127,131,135,139,143,147,151,155,160],{"url":29,"sources":30,"tags":32},"https://www.suse.com/support/update/announcement/2015/suse-su-20150658-1/",[31],"osv_suse",[33],"Advisory",{"url":35,"sources":36,"tags":37},"https://bugzilla.suse.com/898675",[31],[38],"REPORT",{"url":40,"sources":41,"tags":42},"https://bugzilla.suse.com/903997",[31],[38],{"url":44,"sources":45,"tags":46},"https://bugzilla.suse.com/904242",[31],[38],{"url":48,"sources":49,"tags":50},"https://bugzilla.suse.com/909309",[31],[38],{"url":52,"sources":53,"tags":54},"https://bugzilla.suse.com/909477",[31],[38],{"url":56,"sources":57,"tags":58},"https://bugzilla.suse.com/909684",[31],[38],{"url":60,"sources":61,"tags":62},"https://bugzilla.suse.com/910517",[31],[38],{"url":64,"sources":65,"tags":66},"https://bugzilla.suse.com/913080",[31],[38],{"url":68,"sources":69,"tags":70},"https://bugzilla.suse.com/914818",[31],[38],{"url":72,"sources":73,"tags":74},"https://bugzilla.suse.com/915200",[31],[38],{"url":76,"sources":77,"tags":78},"https://bugzilla.suse.com/915660",[31],[38],{"url":80,"sources":81,"tags":82},"https://bugzilla.suse.com/917830",[31],[38],{"url":84,"sources":85,"tags":86},"https://bugzilla.suse.com/918584",[31],[38],{"url":88,"sources":89,"tags":90},"https://bugzilla.suse.com/918615",[31],[38],{"url":92,"sources":93,"tags":94},"https://bugzilla.suse.com/918620",[31],[38],{"url":96,"sources":97,"tags":98},"https://bugzilla.suse.com/918644",[31],[38],{"url":100,"sources":101,"tags":102},"https://bugzilla.suse.com/919463",[31],[38],{"url":104,"sources":105,"tags":106},"https://bugzilla.suse.com/919719",[31],[38],{"url":108,"sources":109,"tags":110},"https://bugzilla.suse.com/919939",[31],[38],{"url":112,"sources":113,"tags":114},"https://bugzilla.suse.com/920615",[31],[38],{"url":116,"sources":117,"tags":118},"https://bugzilla.suse.com/920805",[31],[38],{"url":120,"sources":121,"tags":122},"https://bugzilla.suse.com/920839",[31],[38],{"url":124,"sources":125,"tags":126},"https://bugzilla.suse.com/921313",[31],[38],{"url":128,"sources":129,"tags":130},"https://bugzilla.suse.com/921527",[31],[38],{"url":132,"sources":133,"tags":134},"https://bugzilla.suse.com/921990",[31],[38],{"url":136,"sources":137,"tags":138},"https://bugzilla.suse.com/922272",[31],[38],{"url":140,"sources":141,"tags":142},"https://bugzilla.suse.com/922275",[31],[38],{"url":144,"sources":145,"tags":146},"https://bugzilla.suse.com/922278",[31],[38],{"url":148,"sources":149,"tags":150},"https://bugzilla.suse.com/922284",[31],[38],{"url":152,"sources":153,"tags":154},"https://bugzilla.suse.com/924460",[31],[38],{"url":156,"sources":157,"tags":158},"https://www.suse.com/security/cve/CVE-2015-0777",[31],[159],"WEB",{"url":161,"sources":162,"tags":163},"https://www.suse.com/security/cve/CVE-2015-2150",[31],[159],[],[],[],[168,181,185,189,193,200,205,212,217,221,225,230,234,238,243,247,251],{"ecosystem":169,"name":170,"vendor":171,"product":172,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":172,"source":9,"versions":174},"SUSE Linux Enterprise","kernel-default","suse","kernel-default&distro=SUSE Linux Enterprise Desktop 12","rpm",[175],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},"lt3_12_39_47_1",true,"ecosystem","3.12.39-47.1","excluding",{"ecosystem":169,"name":170,"vendor":171,"product":182,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":182,"source":9,"versions":183},"kernel-default&distro=SUSE Linux Enterprise Server 12",[184],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":170,"vendor":171,"product":186,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":186,"source":9,"versions":187},"kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 12",[188],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":170,"vendor":171,"product":190,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":190,"source":9,"versions":191},"kernel-default&distro=SUSE Linux Enterprise Workstation Extension 12",[192],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":194,"vendor":171,"product":195,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":195,"source":9,"versions":196},"kernel-docs","kernel-docs&distro=SUSE Linux Enterprise Software Development Kit 12",[197],{"version":198,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":199,"version_end_type":180,"fixed_in":9},"lt3_12_39_47_3","3.12.39-47.3",{"ecosystem":169,"name":201,"vendor":171,"product":202,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":202,"source":9,"versions":203},"kernel-ec2","kernel-ec2&distro=SUSE Linux Enterprise Module for Public Cloud 12",[204],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":206,"vendor":171,"product":207,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":207,"source":9,"versions":208},"kernel-obs-build","kernel-obs-build&distro=SUSE Linux Enterprise Software Development Kit 12",[209],{"version":210,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":211,"version_end_type":180,"fixed_in":9},"lt3_12_39_47_2","3.12.39-47.2",{"ecosystem":169,"name":213,"vendor":171,"product":214,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":214,"source":9,"versions":215},"kernel-source","kernel-source&distro=SUSE Linux Enterprise Desktop 12",[216],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":213,"vendor":171,"product":218,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":218,"source":9,"versions":219},"kernel-source&distro=SUSE Linux Enterprise Server 12",[220],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":213,"vendor":171,"product":222,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":222,"source":9,"versions":223},"kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 12",[224],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":226,"vendor":171,"product":227,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":227,"source":9,"versions":228},"kernel-syms","kernel-syms&distro=SUSE Linux Enterprise Desktop 12",[229],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":226,"vendor":171,"product":231,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":231,"source":9,"versions":232},"kernel-syms&distro=SUSE Linux Enterprise Server 12",[233],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":226,"vendor":171,"product":235,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":235,"source":9,"versions":236},"kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 12",[237],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":239,"vendor":171,"product":240,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":240,"source":9,"versions":241},"kernel-xen","kernel-xen&distro=SUSE Linux Enterprise Desktop 12",[242],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":239,"vendor":171,"product":244,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":244,"source":9,"versions":245},"kernel-xen&distro=SUSE Linux Enterprise Server 12",[246],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":239,"vendor":171,"product":248,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":248,"source":9,"versions":249},"kernel-xen&distro=SUSE Linux Enterprise Server for SAP Applications 12",[250],{"version":176,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":179,"version_end_type":180,"fixed_in":9},{"ecosystem":169,"name":252,"vendor":171,"product":253,"cpe_part":9,"purl_type":173,"purl_namespace":171,"purl_name":253,"source":9,"versions":254},"kgraft-patch-SLE12_Update_4","kgraft-patch-SLE12_Update_4&distro=SUSE Linux Enterprise Live Patching 12",[255],{"version":256,"is_range":177,"range_type":178,"version_start":9,"version_start_type":9,"version_end":257,"version_end_type":180,"fixed_in":9},"lt1_2_1","1-2.1"]