SUSE-SU-2025:0202-1
Vulnerability Summary
Timeline
Description
Security update for the Linux Kernel The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49035: media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE (bsc#1215304). - CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234853). - CVE-2024-53156: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (bsc#1234846). - CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234891). - CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921). - CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004). - CVE-2024-53239: ALSA: 6fire: Release resources at card release (bsc#1235054). - CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281). - CVE-2024-56539: wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (bsc#1234963). - CVE-2024-56548: hfsplus: do not query the device logical block size multiple times (bsc#1235073). - CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056). - CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (bsc#1235061). - CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480). - CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584). The following non-security bugs were fixed: - net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
Affected Systems
- suse•kernel-64kb&distro=SUSE Enterprise Storage 7.1
< 5.3.18-150300.59.188.1
- suse•kernel-64kb&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-64kb&distro=SUSE Linux Enterprise Server 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-default-base&distro=SUSE Enterprise Storage 7.1
< 5.3.18-150300.59.188.1.150300.18.111.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
< 5.3.18-150300.59.188.1.150300.18.111.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Micro 5.1
< 5.3.18-150300.59.188.1.150300.18.111.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Micro 5.2
< 5.3.18-150300.59.188.1.150300.18.111.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Server 15 SP3-LTSS
< 5.3.18-150300.59.188.1.150300.18.111.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3
< 5.3.18-150300.59.188.1.150300.18.111.1
- suse•kernel-default&distro=SUSE Enterprise Storage 7.1
< 5.3.18-150300.59.188.1
- suse•kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP3
< 5.3.18-150300.59.188.1
- suse•kernel-default&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-default&distro=SUSE Linux Enterprise Live Patching 15 SP3
< 5.3.18-150300.59.188.1
- suse•kernel-default&distro=SUSE Linux Enterprise Micro 5.1
< 5.3.18-150300.59.188.1
- suse•kernel-default&distro=SUSE Linux Enterprise Micro 5.2
< 5.3.18-150300.59.188.1
- suse•kernel-default&distro=SUSE Linux Enterprise Server 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3
< 5.3.18-150300.59.188.1
- suse•kernel-docs&distro=SUSE Enterprise Storage 7.1
< 5.3.18-150300.59.188.1
- suse•kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-docs&distro=SUSE Linux Enterprise Server 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-docs&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3
< 5.3.18-150300.59.188.1
- suse•kernel-livepatch-SLE15-SP3_Update_52&distro=SUSE Linux Enterprise Live Patching 15 SP3
< 1-150300.7.3.1
- suse•kernel-obs-build&distro=SUSE Enterprise Storage 7.1
< 5.3.18-150300.59.188.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise Server 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3
< 5.3.18-150300.59.188.1
- suse•kernel-preempt&distro=SUSE Enterprise Storage 7.1
< 5.3.18-150300.59.188.1
- suse•kernel-preempt&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-preempt&distro=SUSE Linux Enterprise Server 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-preempt&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3
< 5.3.18-150300.59.188.1
- suse•kernel-source&distro=SUSE Enterprise Storage 7.1
< 5.3.18-150300.59.188.1
- suse•kernel-source&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-source&distro=SUSE Linux Enterprise Server 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3
< 5.3.18-150300.59.188.1
- suse•kernel-syms&distro=SUSE Enterprise Storage 7.1
< 5.3.18-150300.59.188.1
- suse•kernel-syms&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-syms&distro=SUSE Linux Enterprise Server 15 SP3-LTSS
< 5.3.18-150300.59.188.1
- suse•kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3
< 5.3.18-150300.59.188.1
- suse•kernel-zfcpdump&distro=SUSE Linux Enterprise Server 15 SP3-LTSS
< 5.3.18-150300.59.188.1
References (39)
- https://www.suse.com/support/update/announcement/2025/suse-su-20250202-1/
- https://bugzilla.suse.com/1215304
- https://bugzilla.suse.com/1220927
- https://bugzilla.suse.com/1220937
- https://bugzilla.suse.com/1230697
- https://bugzilla.suse.com/1232436
- https://bugzilla.suse.com/1234281
- https://bugzilla.suse.com/1234690
- https://bugzilla.suse.com/1234846
- https://bugzilla.suse.com/1234853
- https://bugzilla.suse.com/1234891
- https://bugzilla.suse.com/1234921
- https://bugzilla.suse.com/1234963
- https://bugzilla.suse.com/1235004
- https://bugzilla.suse.com/1235054
- https://bugzilla.suse.com/1235056
- https://bugzilla.suse.com/1235061
- https://bugzilla.suse.com/1235073
- https://bugzilla.suse.com/1235246
- https://bugzilla.suse.com/1235480
- https://bugzilla.suse.com/1235584
- https://www.suse.com/security/cve/CVE-2022-49035
- https://www.suse.com/security/cve/CVE-2023-52524
- https://www.suse.com/security/cve/CVE-2024-53142
- https://www.suse.com/security/cve/CVE-2024-53144
- https://www.suse.com/security/cve/CVE-2024-53146
- https://www.suse.com/security/cve/CVE-2024-53156
- https://www.suse.com/security/cve/CVE-2024-53173
- https://www.suse.com/security/cve/CVE-2024-53179
- https://www.suse.com/security/cve/CVE-2024-53214
- https://www.suse.com/security/cve/CVE-2024-53239
- https://www.suse.com/security/cve/CVE-2024-53240
- https://www.suse.com/security/cve/CVE-2024-56539
- https://www.suse.com/security/cve/CVE-2024-56548
- https://www.suse.com/security/cve/CVE-2024-56604
- https://www.suse.com/security/cve/CVE-2024-56605
- https://www.suse.com/security/cve/CVE-2024-56631
- https://www.suse.com/security/cve/CVE-2024-56704
- https://www.suse.com/security/cve/CVE-2024-8805