SUSE-SU-2024:3641-1
Advisory lineage Upstream: 4 Downstream: 0
Published: 15 Oct 2024, 19:03
Last modified:04 Feb 2026, 02:21
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
15 Oct 2024, 19:03
Published
Vulnerability first disclosed
04 Feb 2026, 02:21
Last Modified
Vulnerability information updated
Description
Security update for the Linux Kernel (Live Patch 45 for SLE 15 SP2) This update for the Linux Kernel 5.3.18-150200_24_178 fixes several issues. The following security issues were fixed: - CVE-2024-35861: Fixed potential UAF in cifs_signal_cifsd_for_reconnect() (bsc#1225312). - CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6_nh_flush_exceptions (bsc#1227651). - CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228573). - CVE-2024-36964: fs/9p: only translate RWX permissions for plain 9P2000 (bsc#1226325).
Affected Systems
- suse•kernel-livepatch-SLE15-SP2_Update_45&distro=SUSE Linux Enterprise Live Patching 15 SP2
< 10-150200.2.1
References (9)
- https://www.suse.com/support/update/announcement/2024/suse-su-20243641-1/
- https://bugzilla.suse.com/1225312
- https://bugzilla.suse.com/1226325
- https://bugzilla.suse.com/1227651
- https://bugzilla.suse.com/1228573
- https://www.suse.com/security/cve/CVE-2021-47291
- https://www.suse.com/security/cve/CVE-2024-35861
- https://www.suse.com/security/cve/CVE-2024-36964
- https://www.suse.com/security/cve/CVE-2024-41059