[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2024:2923-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":66,"duplicates":67,"related":68,"reserved_at":9,"published_at":95,"modified_at":96,"state":9,"summary":97,"references_raw":99,"kevs":344,"epss":9,"epss_history":345,"metrics":346,"affected":347},"SUSE-SU-2024:2923-1","Security update for the Linux Kernel\n\nThe SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716).\n- CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644).\n- CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743).\n- CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561).\n- CVE-2023-52885: SUNRPC: Fix UAF in svc_tcp_listen_data_ready() (bsc#1227750).\n- CVE-2022-48792: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task (bsc#1228013).\n- CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328).\n- CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6_nh_flush_exceptions (bsc#1224918).\n- CVE-2021-47126: ipv6: Fix KASAN: slab-out-of-bounds Read in fib6_nh_flush_exceptions (bsc#1221539).\n- CVE-2024-41011: drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (bsc#1228114).\n- CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574).\n- CVE-2021-47580: scsi: scsi_debug: Fix type in min_t to avoid stack OOB (bsc#1226550).\n- CVE-2021-47219: scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs() (bsc#1222824).\n- CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836).\n- CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bsc#1186463).\n- CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (bsc#1179610).\n- CVE-2022-48821: misc: fastrpc: avoid double fput() on failed usercopy (bsc#1227976).\n- CVE-2021-47506: nfsd: fix use-after-free due to delegation race (bsc#1225404).\n- CVE-2021-47520: can: pch_can: pch_can_rx_normal: fix use after free (bsc#1225431).\n- CVE-2024-26583: tls: fix use-after-free on failed backlog decryption (bsc#1220185).\n- CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187).\n- CVE-2021-47600: dm btree remove: fix use after free in rebalance_children() (bsc#1226575).\n- CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519).\n\nThe following non-security bugs were fixed:\n\n- Fix spurious WARNING caused by a qxl driver patch (bsc#1227213)\n- X.509: Fix the parser of extended key usage for length (bsc#1218820 bsc#1226666).\n- ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834).\n- powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487).\n- powerpc/rtas: clean up includes (bsc#1227487).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64],{"_key":15},"CVE-2020-26558",{"_key":17},"CVE-2021-0129",{"_key":19},"CVE-2021-47126",{"_key":21},"CVE-2021-47219",{"_key":23},"CVE-2021-47291",{"_key":25},"CVE-2021-47506",{"_key":27},"CVE-2021-47520",{"_key":29},"CVE-2021-47580",{"_key":31},"CVE-2021-47598",{"_key":33},"CVE-2021-47600",{"_key":35},"CVE-2022-48792",{"_key":37},"CVE-2022-48821",{"_key":39},"CVE-2023-52686",{"_key":41},"CVE-2023-52885",{"_key":43},"CVE-2024-26583",{"_key":45},"CVE-2024-26584",{"_key":47},"CVE-2024-26585",{"_key":49},"CVE-2024-36974",{"_key":51},"CVE-2024-38559",{"_key":53},"CVE-2024-39494",{"_key":55},"CVE-2024-40937",{"_key":57},"CVE-2024-41011",{"_key":59},"CVE-2024-41059",{"_key":61},"CVE-2024-41069",{"_key":63},"CVE-2024-41090",{"_key":65},"CVE-2024-42145",[],[],[69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},"2024-08-15T07:01:07Z","2026-02-04T03:43:50.996882Z",{"cisa_kev":98,"cisa_ransomware":98,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[100,106,111,115,119,123,127,131,135,139,143,147,151,155,159,163,167,171,175,179,183,187,191,195,199,203,207,211,215,219,223,227,231,235,239,244,248,252,256,260,264,268,272,276,280,284,288,292,296,300,304,308,312,316,320,324,328,332,336,340],{"url":101,"sources":102,"tags":104},"https://www.suse.com/support/update/announcement/2024/suse-su-20242923-1/",[103],"osv_suse",[105],"Advisory",{"url":107,"sources":108,"tags":109},"https://bugzilla.suse.com/1065729",[103],[110],"REPORT",{"url":112,"sources":113,"tags":114},"https://bugzilla.suse.com/1179610",[103],[110],{"url":116,"sources":117,"tags":118},"https://bugzilla.suse.com/1186463",[103],[110],{"url":120,"sources":121,"tags":122},"https://bugzilla.suse.com/1216834",[103],[110],{"url":124,"sources":125,"tags":126},"https://bugzilla.suse.com/1218820",[103],[110],{"url":128,"sources":129,"tags":130},"https://bugzilla.suse.com/1220185",[103],[110],{"url":132,"sources":133,"tags":134},"https://bugzilla.suse.com/1220186",[103],[110],{"url":136,"sources":137,"tags":138},"https://bugzilla.suse.com/1220187",[103],[110],{"url":140,"sources":141,"tags":142},"https://bugzilla.suse.com/1221539",[103],[110],{"url":144,"sources":145,"tags":146},"https://bugzilla.suse.com/1222824",[103],[110],{"url":148,"sources":149,"tags":150},"https://bugzilla.suse.com/1224682",[103],[110],{"url":152,"sources":153,"tags":154},"https://bugzilla.suse.com/1224918",[103],[110],{"url":156,"sources":157,"tags":158},"https://bugzilla.suse.com/1225404",[103],[110],{"url":160,"sources":161,"tags":162},"https://bugzilla.suse.com/1225431",[103],[110],{"url":164,"sources":165,"tags":166},"https://bugzilla.suse.com/1226519",[103],[110],{"url":168,"sources":169,"tags":170},"https://bugzilla.suse.com/1226550",[103],[110],{"url":172,"sources":173,"tags":174},"https://bugzilla.suse.com/1226574",[103],[110],{"url":176,"sources":177,"tags":178},"https://bugzilla.suse.com/1226575",[103],[110],{"url":180,"sources":181,"tags":182},"https://bugzilla.suse.com/1226666",[103],[110],{"url":184,"sources":185,"tags":186},"https://bugzilla.suse.com/1226758",[103],[110],{"url":188,"sources":189,"tags":190},"https://bugzilla.suse.com/1226785",[103],[110],{"url":192,"sources":193,"tags":194},"https://bugzilla.suse.com/1227213",[103],[110],{"url":196,"sources":197,"tags":198},"https://bugzilla.suse.com/1227487",[103],[110],{"url":200,"sources":201,"tags":202},"https://bugzilla.suse.com/1227716",[103],[110],{"url":204,"sources":205,"tags":206},"https://bugzilla.suse.com/1227750",[103],[110],{"url":208,"sources":209,"tags":210},"https://bugzilla.suse.com/1227836",[103],[110],{"url":212,"sources":213,"tags":214},"https://bugzilla.suse.com/1227976",[103],[110],{"url":216,"sources":217,"tags":218},"https://bugzilla.suse.com/1228013",[103],[110],{"url":220,"sources":221,"tags":222},"https://bugzilla.suse.com/1228114",[103],[110],{"url":224,"sources":225,"tags":226},"https://bugzilla.suse.com/1228328",[103],[110],{"url":228,"sources":229,"tags":230},"https://bugzilla.suse.com/1228561",[103],[110],{"url":232,"sources":233,"tags":234},"https://bugzilla.suse.com/1228644",[103],[110],{"url":236,"sources":237,"tags":238},"https://bugzilla.suse.com/1228743",[103],[110],{"url":240,"sources":241,"tags":242},"https://www.suse.com/security/cve/CVE-2020-26558",[103],[243],"WEB",{"url":245,"sources":246,"tags":247},"https://www.suse.com/security/cve/CVE-2021-0129",[103],[243],{"url":249,"sources":250,"tags":251},"https://www.suse.com/security/cve/CVE-2021-47126",[103],[243],{"url":253,"sources":254,"tags":255},"https://www.suse.com/security/cve/CVE-2021-47219",[103],[243],{"url":257,"sources":258,"tags":259},"https://www.suse.com/security/cve/CVE-2021-47291",[103],[243],{"url":261,"sources":262,"tags":263},"https://www.suse.com/security/cve/CVE-2021-47506",[103],[243],{"url":265,"sources":266,"tags":267},"https://www.suse.com/security/cve/CVE-2021-47520",[103],[243],{"url":269,"sources":270,"tags":271},"https://www.suse.com/security/cve/CVE-2021-47580",[103],[243],{"url":273,"sources":274,"tags":275},"https://www.suse.com/security/cve/CVE-2021-47598",[103],[243],{"url":277,"sources":278,"tags":279},"https://www.suse.com/security/cve/CVE-2021-47600",[103],[243],{"url":281,"sources":282,"tags":283},"https://www.suse.com/security/cve/CVE-2022-48792",[103],[243],{"url":285,"sources":286,"tags":287},"https://www.suse.com/security/cve/CVE-2022-48821",[103],[243],{"url":289,"sources":290,"tags":291},"https://www.suse.com/security/cve/CVE-2023-52686",[103],[243],{"url":293,"sources":294,"tags":295},"https://www.suse.com/security/cve/CVE-2023-52885",[103],[243],{"url":297,"sources":298,"tags":299},"https://www.suse.com/security/cve/CVE-2024-26583",[103],[243],{"url":301,"sources":302,"tags":303},"https://www.suse.com/security/cve/CVE-2024-26584",[103],[243],{"url":305,"sources":306,"tags":307},"https://www.suse.com/security/cve/CVE-2024-26585",[103],[243],{"url":309,"sources":310,"tags":311},"https://www.suse.com/security/cve/CVE-2024-36974",[103],[243],{"url":313,"sources":314,"tags":315},"https://www.suse.com/security/cve/CVE-2024-38559",[103],[243],{"url":317,"sources":318,"tags":319},"https://www.suse.com/security/cve/CVE-2024-39494",[103],[243],{"url":321,"sources":322,"tags":323},"https://www.suse.com/security/cve/CVE-2024-40937",[103],[243],{"url":325,"sources":326,"tags":327},"https://www.suse.com/security/cve/CVE-2024-41011",[103],[243],{"url":329,"sources":330,"tags":331},"https://www.suse.com/security/cve/CVE-2024-41059",[103],[243],{"url":333,"sources":334,"tags":335},"https://www.suse.com/security/cve/CVE-2024-41069",[103],[243],{"url":337,"sources":338,"tags":339},"https://www.suse.com/security/cve/CVE-2024-41090",[103],[243],{"url":341,"sources":342,"tags":343},"https://www.suse.com/security/cve/CVE-2024-42145",[103],[243],[],[],[],[348,361,365,369,376,380,384,388,392,397,401,405,412,417,421,425,430,434,438,443,447,451,456,460],{"ecosystem":349,"name":350,"vendor":351,"product":352,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":352,"source":9,"versions":354},"SUSE Linux Enterprise","kernel-default-base","suse","kernel-default-base&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS","rpm",[355],{"version":356,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":359,"version_end_type":360,"fixed_in":9},"lt5_3_18_150200_24_200_1_150200_9_103_1",true,"ecosystem","5.3.18-150200.24.200.1.150200.9.103.1","excluding",{"ecosystem":349,"name":350,"vendor":351,"product":362,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":362,"source":9,"versions":363},"kernel-default-base&distro=SUSE Linux Enterprise Server 15 SP2-LTSS",[364],{"version":356,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":359,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":350,"vendor":351,"product":366,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":366,"source":9,"versions":367},"kernel-default-base&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2",[368],{"version":356,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":359,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":370,"vendor":351,"product":371,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":371,"source":9,"versions":372},"kernel-default","kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP2",[373],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},"lt5_3_18_150200_24_200_1","5.3.18-150200.24.200.1",{"ecosystem":349,"name":370,"vendor":351,"product":377,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":377,"source":9,"versions":378},"kernel-default&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",[379],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":370,"vendor":351,"product":381,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":381,"source":9,"versions":382},"kernel-default&distro=SUSE Linux Enterprise Live Patching 15 SP2",[383],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":370,"vendor":351,"product":385,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":385,"source":9,"versions":386},"kernel-default&distro=SUSE Linux Enterprise Server 15 SP2-LTSS",[387],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":370,"vendor":351,"product":389,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":389,"source":9,"versions":390},"kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2",[391],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":393,"vendor":351,"product":394,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":394,"source":9,"versions":395},"kernel-docs","kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",[396],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":393,"vendor":351,"product":398,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":398,"source":9,"versions":399},"kernel-docs&distro=SUSE Linux Enterprise Server 15 SP2-LTSS",[400],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":393,"vendor":351,"product":402,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":402,"source":9,"versions":403},"kernel-docs&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2",[404],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":406,"vendor":351,"product":407,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":407,"source":9,"versions":408},"kernel-livepatch-SLE15-SP2_Update_51","kernel-livepatch-SLE15-SP2_Update_51&distro=SUSE Linux Enterprise Live Patching 15 SP2",[409],{"version":410,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":411,"version_end_type":360,"fixed_in":9},"lt1_150200_5_3_1","1-150200.5.3.1",{"ecosystem":349,"name":413,"vendor":351,"product":414,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":414,"source":9,"versions":415},"kernel-obs-build","kernel-obs-build&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",[416],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":413,"vendor":351,"product":418,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":418,"source":9,"versions":419},"kernel-obs-build&distro=SUSE Linux Enterprise Server 15 SP2-LTSS",[420],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":413,"vendor":351,"product":422,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":422,"source":9,"versions":423},"kernel-obs-build&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2",[424],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":426,"vendor":351,"product":427,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":427,"source":9,"versions":428},"kernel-preempt","kernel-preempt&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",[429],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":426,"vendor":351,"product":431,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":431,"source":9,"versions":432},"kernel-preempt&distro=SUSE Linux Enterprise Server 15 SP2-LTSS",[433],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":426,"vendor":351,"product":435,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":435,"source":9,"versions":436},"kernel-preempt&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2",[437],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":439,"vendor":351,"product":440,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":440,"source":9,"versions":441},"kernel-source","kernel-source&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",[442],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":439,"vendor":351,"product":444,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":444,"source":9,"versions":445},"kernel-source&distro=SUSE Linux Enterprise Server 15 SP2-LTSS",[446],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":439,"vendor":351,"product":448,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":448,"source":9,"versions":449},"kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2",[450],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":452,"vendor":351,"product":453,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":453,"source":9,"versions":454},"kernel-syms","kernel-syms&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",[455],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":452,"vendor":351,"product":457,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":457,"source":9,"versions":458},"kernel-syms&distro=SUSE Linux Enterprise Server 15 SP2-LTSS",[459],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9},{"ecosystem":349,"name":452,"vendor":351,"product":461,"cpe_part":9,"purl_type":353,"purl_namespace":351,"purl_name":461,"source":9,"versions":462},"kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2",[463],{"version":374,"is_range":357,"range_type":358,"version_start":9,"version_start_type":9,"version_end":375,"version_end_type":360,"fixed_in":9}]