SUSE-SU-2025:01627-1
Vulnerability Summary
Timeline
Description
Security update for the Linux Kernel The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2025-21726: padata: avoid UAF for reorder_work (bsc#1238865). - CVE-2025-21785: arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array (bsc#1238747). - CVE-2025-21791: vrf: use RCU protection in l3mdev_l3_out() (bsc#1238512). - CVE-2025-21812: ax25: rcu protect dev->ax25_ptr (bsc#1238471). - CVE-2025-22004: net: atm: fix use after free in lec_send() (bsc#1240835). - CVE-2025-22020: memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove (bsc#1241280). - CVE-2025-22045: x86/mm: Fix flush_tlb_range() when used for zapping normal PMDs (bsc#1241433). - CVE-2025-22055: net: fix geneve_opt length integer overflow (bsc#1241371). - CVE-2025-22097: drm/vkms: Fix use after free and double free on init error (bsc#1241541). The following non-security bugs were fixed: - scsi: smartpqi: Add ctrl ready timeout module parameter (jsc#PED-1557, bsc#1201855, bsc#1240553).
Affected Systems
- suse•kernel-64kb&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.164.1
- suse•kernel-64kb&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-64kb&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.164.1.150400.24.82.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.164.1.150400.24.82.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Micro 5.3
< 5.14.21-150400.24.164.1.150400.24.82.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Micro 5.4
< 5.14.21-150400.24.164.1.150400.24.82.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.164.1.150400.24.82.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4
< 5.14.21-150400.24.164.1.150400.24.82.1
- suse•kernel-default-base&distro=SUSE Manager Proxy 4.3
< 5.14.21-150400.24.164.1.150400.24.82.1
- suse•kernel-default-base&distro=SUSE Manager Server 4.3
< 5.14.21-150400.24.164.1.150400.24.82.1
- suse•kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP4
< 5.14.21-150400.24.164.1
- suse•kernel-default&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.164.1
- suse•kernel-default&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-default&distro=SUSE Linux Enterprise Live Patching 15 SP4
< 5.14.21-150400.24.164.1
- suse•kernel-default&distro=SUSE Linux Enterprise Micro 5.3
< 5.14.21-150400.24.164.1
- suse•kernel-default&distro=SUSE Linux Enterprise Micro 5.4
< 5.14.21-150400.24.164.1
- suse•kernel-default&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4
< 5.14.21-150400.24.164.1
- suse•kernel-default&distro=SUSE Manager Proxy 4.3
< 5.14.21-150400.24.164.1
- suse•kernel-default&distro=SUSE Manager Server 4.3
< 5.14.21-150400.24.164.1
- suse•kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.164.1
- suse•kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-docs&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-docs&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4
< 5.14.21-150400.24.164.1
- suse•kernel-livepatch-SLE15-SP4_Update_40&distro=SUSE Linux Enterprise Live Patching 15 SP4
< 1-150400.9.3.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.164.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4
< 5.14.21-150400.24.164.1
- suse•kernel-source&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.164.1
- suse•kernel-source&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-source&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4
< 5.14.21-150400.24.164.1
- suse•kernel-source&distro=SUSE Manager Proxy 4.3
< 5.14.21-150400.24.164.1
- suse•kernel-source&distro=SUSE Manager Server 4.3
< 5.14.21-150400.24.164.1
- suse•kernel-syms&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.164.1
- suse•kernel-syms&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-syms&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4
< 5.14.21-150400.24.164.1
- suse•kernel-syms&distro=SUSE Manager Proxy 4.3
< 5.14.21-150400.24.164.1
- suse•kernel-syms&distro=SUSE Manager Server 4.3
< 5.14.21-150400.24.164.1
- suse•kernel-zfcpdump&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.164.1
- suse•kernel-zfcpdump&distro=SUSE Manager Server 4.3
< 5.14.21-150400.24.164.1
References (31)
- https://www.suse.com/support/update/announcement/2025/suse-su-202501627-1/
- https://bugzilla.suse.com/1201855
- https://bugzilla.suse.com/1230771
- https://bugzilla.suse.com/1238471
- https://bugzilla.suse.com/1238512
- https://bugzilla.suse.com/1238747
- https://bugzilla.suse.com/1238865
- https://bugzilla.suse.com/1239968
- https://bugzilla.suse.com/1240188
- https://bugzilla.suse.com/1240195
- https://bugzilla.suse.com/1240553
- https://bugzilla.suse.com/1240747
- https://bugzilla.suse.com/1240835
- https://bugzilla.suse.com/1241280
- https://bugzilla.suse.com/1241371
- https://bugzilla.suse.com/1241421
- https://bugzilla.suse.com/1241433
- https://bugzilla.suse.com/1241541
- https://www.suse.com/security/cve/CVE-2021-47671
- https://www.suse.com/security/cve/CVE-2022-49741
- https://www.suse.com/security/cve/CVE-2024-46784
- https://www.suse.com/security/cve/CVE-2025-21726
- https://www.suse.com/security/cve/CVE-2025-21785
- https://www.suse.com/security/cve/CVE-2025-21791
- https://www.suse.com/security/cve/CVE-2025-21812
- https://www.suse.com/security/cve/CVE-2025-21886
- https://www.suse.com/security/cve/CVE-2025-22004
- https://www.suse.com/security/cve/CVE-2025-22020
- https://www.suse.com/security/cve/CVE-2025-22045
- https://www.suse.com/security/cve/CVE-2025-22055
- https://www.suse.com/security/cve/CVE-2025-22097