SUSE-SU-2025:03613-1
Vulnerability Summary
Timeline
Description
Security update for the Linux Kernel The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49980: USB: gadget: fix use-after-free read in usb_udc_uevent() (bsc#1245110). - CVE-2022-50233: Bluetooth: eir: Fix using strlen with hdev->{dev_name,short_name} (bsc#1246968). - CVE-2022-50248: wifi: iwlwifi: mvm: fix double free on tx path (bsc#1249840). - CVE-2022-50252: igb: Do not free q_vector unless new one was allocated (bsc#1249846). - CVE-2022-50258: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmf_c_preinit_dcmds() (bsc#1249947). - CVE-2022-50381: md: fix a crash in mempool_free (bsc#1250257). - CVE-2022-50386: Bluetooth: L2CAP: Fix user-after-free (bsc#1250301). - CVE-2022-50401: nfsd: under NFSv4.1, fix double svc_xprt_put on rpc_create failure (bsc#1250140). - CVE-2022-50408: wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit() (bsc#1250391). - CVE-2022-50409: net: If sock is dead do not access sock's sk_wq in sk_stream_wait_memory (bsc#1250392). - CVE-2023-53178: mm: fix zswap writeback race condition (bsc#1249827). - CVE-2023-53321: wifi: mac80211_hwsim: drop short frames (bsc#1250313). - CVE-2023-53438: x86/MCE: Always save CS register on AMD Zen IF Poison errors (bsc#1250180). - CVE-2025-21969: kABI workaround for l2cap_conn changes (bsc#1240784). - CVE-2025-38184: tipc: fix null-ptr-deref when acquiring remote ip of ethernet bearer (bsc#1245956). - CVE-2025-38488: smb: client: fix use-after-free in crypt_message when using async crypto (bsc#1247239). - CVE-2025-38553: net/sched: Restrict conditions for adding duplicating netems to qdisc tree (bsc#1248255). - CVE-2025-38572: ipv6: reject malicious packets in ipv6_gso_segment() (bsc#1248399). - CVE-2025-38664: ice: Fix a null pointer dereference in ice_copy_and_init_pkg() (bsc#1248628). - CVE-2025-38685: fbdev: Fix vmalloc out-of-bounds write in fast_imageblit (bsc#1249220). - CVE-2025-38713: hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc() (bsc#1249200). - CVE-2025-39751: ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control (bsc#1249538). - CVE-2025-39823: KVM: x86: use array_index_nospec with indices that come from guest (bsc#1250002). The following non-security bugs were fixed: - Limit patch filenames to 100 characters (bsc#1249604). - Move pesign-obs-integration requirement from kernel-syms to kernel devel subpackage (bsc#1248108). - hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc() (git-fixes). - kernel-binary: Another installation ordering fix (bsc#1241353). - kernel-source: Do not list mkspec and its inputs as sources (bsc#1250522). - kernel-subpackage-build: Decompress ghost file when compressed version exists (bsc#1249346) - kernel-syms.spec: Drop old rpm release number hack (bsc#1247172). - rpm/kernel-subpackage-spec: Skip brp-strip-debug to avoid file truncation (bsc#1246879) - rpm/mkspec: Fix missing kernel-syms-rt creation (bsc#1244337) - rpm: Configure KABI checkingness macro (bsc#1249186) - rpm: Drop support for kabi/arch/ignore-flavor (bsc#1249186) - rpm: Link arch-symbols script from scripts directory. - rpm: Link guards script from scripts directory. - use uniform permission checks for all mount propagation changes (git-fixes).
Affected Systems
- suse•kernel-rt&distro=SUSE Linux Enterprise Micro 5.1
< 5.3.18-150300.223.1
- suse•kernel-rt&distro=SUSE Linux Enterprise Micro 5.2
< 5.3.18-150300.223.1
- suse•kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.1
< 5.3.18-150300.223.1
- suse•kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.2
< 5.3.18-150300.223.1
References (174)
- https://www.suse.com/support/update/announcement/2025/suse-su-202503613-1/
- https://bugzilla.suse.com/1202700
- https://bugzilla.suse.com/1203063
- https://bugzilla.suse.com/1203332
- https://bugzilla.suse.com/1204228
- https://bugzilla.suse.com/1205128
- https://bugzilla.suse.com/1206883
- https://bugzilla.suse.com/1206884
- https://bugzilla.suse.com/1209287
- https://bugzilla.suse.com/1209291
- https://bugzilla.suse.com/1210124
- https://bugzilla.suse.com/1210584
- https://bugzilla.suse.com/1213061
- https://bugzilla.suse.com/1213666
- https://bugzilla.suse.com/1215150
- https://bugzilla.suse.com/1216976
- https://bugzilla.suse.com/1220185
- https://bugzilla.suse.com/1220186
- https://bugzilla.suse.com/1240784
- https://bugzilla.suse.com/1241353
- https://bugzilla.suse.com/1243278
- https://bugzilla.suse.com/1244337
- https://bugzilla.suse.com/1245110
- https://bugzilla.suse.com/1245956
- https://bugzilla.suse.com/1246879
- https://bugzilla.suse.com/1246968
- https://bugzilla.suse.com/1247172
- https://bugzilla.suse.com/1247239
- https://bugzilla.suse.com/1248108
- https://bugzilla.suse.com/1248255
- https://bugzilla.suse.com/1248399
- https://bugzilla.suse.com/1248628
- https://bugzilla.suse.com/1248847
- https://bugzilla.suse.com/1249186
- https://bugzilla.suse.com/1249200
- https://bugzilla.suse.com/1249220
- https://bugzilla.suse.com/1249346
- https://bugzilla.suse.com/1249538
- https://bugzilla.suse.com/1249604
- https://bugzilla.suse.com/1249664
- https://bugzilla.suse.com/1249667
- https://bugzilla.suse.com/1249700
- https://bugzilla.suse.com/1249713
- https://bugzilla.suse.com/1249716
- https://bugzilla.suse.com/1249718
- https://bugzilla.suse.com/1249734
- https://bugzilla.suse.com/1249740
- https://bugzilla.suse.com/1249743
- https://bugzilla.suse.com/1249747
- https://bugzilla.suse.com/1249808
- https://bugzilla.suse.com/1249825
- https://bugzilla.suse.com/1249827
- https://bugzilla.suse.com/1249840
- https://bugzilla.suse.com/1249846
- https://bugzilla.suse.com/1249880
- https://bugzilla.suse.com/1249885
- https://bugzilla.suse.com/1249908
- https://bugzilla.suse.com/1249918
- https://bugzilla.suse.com/1249923
- https://bugzilla.suse.com/1249930
- https://bugzilla.suse.com/1249947
- https://bugzilla.suse.com/1249949
- https://bugzilla.suse.com/1250002
- https://bugzilla.suse.com/1250009
- https://bugzilla.suse.com/1250014
- https://bugzilla.suse.com/1250041
- https://bugzilla.suse.com/1250131
- https://bugzilla.suse.com/1250132
- https://bugzilla.suse.com/1250140
- https://bugzilla.suse.com/1250180
- https://bugzilla.suse.com/1250183
- https://bugzilla.suse.com/1250187
- https://bugzilla.suse.com/1250257
- https://bugzilla.suse.com/1250269
- https://bugzilla.suse.com/1250277
- https://bugzilla.suse.com/1250301
- https://bugzilla.suse.com/1250313
- https://bugzilla.suse.com/1250391
- https://bugzilla.suse.com/1250392
- https://bugzilla.suse.com/1250394
- https://bugzilla.suse.com/1250522
- https://bugzilla.suse.com/1250764
- https://bugzilla.suse.com/1250767
- https://bugzilla.suse.com/1250774
- https://bugzilla.suse.com/1250787
- https://bugzilla.suse.com/1250790
- https://bugzilla.suse.com/1250797
- https://bugzilla.suse.com/1250799
- https://bugzilla.suse.com/1250823
- https://bugzilla.suse.com/1250847
- https://bugzilla.suse.com/1250850
- https://bugzilla.suse.com/1250853
- https://bugzilla.suse.com/1250868
- https://bugzilla.suse.com/1250890
- https://bugzilla.suse.com/1250891
- https://www.suse.com/security/cve/CVE-2021-4460
- https://www.suse.com/security/cve/CVE-2022-2602
- https://www.suse.com/security/cve/CVE-2022-2978
- https://www.suse.com/security/cve/CVE-2022-36280
- https://www.suse.com/security/cve/CVE-2022-43945
- https://www.suse.com/security/cve/CVE-2022-49980
- https://www.suse.com/security/cve/CVE-2022-50233
- https://www.suse.com/security/cve/CVE-2022-50234
- https://www.suse.com/security/cve/CVE-2022-50235
- https://www.suse.com/security/cve/CVE-2022-50248
- https://www.suse.com/security/cve/CVE-2022-50249
- https://www.suse.com/security/cve/CVE-2022-50252
- https://www.suse.com/security/cve/CVE-2022-50257
- https://www.suse.com/security/cve/CVE-2022-50258
- https://www.suse.com/security/cve/CVE-2022-50260
- https://www.suse.com/security/cve/CVE-2022-50271
- https://www.suse.com/security/cve/CVE-2022-50272
- https://www.suse.com/security/cve/CVE-2022-50299
- https://www.suse.com/security/cve/CVE-2022-50309
- https://www.suse.com/security/cve/CVE-2022-50312
- https://www.suse.com/security/cve/CVE-2022-50317
- https://www.suse.com/security/cve/CVE-2022-50330
- https://www.suse.com/security/cve/CVE-2022-50344
- https://www.suse.com/security/cve/CVE-2022-50355
- https://www.suse.com/security/cve/CVE-2022-50359
- https://www.suse.com/security/cve/CVE-2022-50367
- https://www.suse.com/security/cve/CVE-2022-50368
- https://www.suse.com/security/cve/CVE-2022-50375
- https://www.suse.com/security/cve/CVE-2022-50381
- https://www.suse.com/security/cve/CVE-2022-50385
- https://www.suse.com/security/cve/CVE-2022-50386
- https://www.suse.com/security/cve/CVE-2022-50401
- https://www.suse.com/security/cve/CVE-2022-50408
- https://www.suse.com/security/cve/CVE-2022-50409
- https://www.suse.com/security/cve/CVE-2022-50410
- https://www.suse.com/security/cve/CVE-2022-50414
- https://www.suse.com/security/cve/CVE-2022-50419
- https://www.suse.com/security/cve/CVE-2022-50422
- https://www.suse.com/security/cve/CVE-2022-50427
- https://www.suse.com/security/cve/CVE-2022-50431
- https://www.suse.com/security/cve/CVE-2022-50435
- https://www.suse.com/security/cve/CVE-2022-50437
- https://www.suse.com/security/cve/CVE-2022-50440
- https://www.suse.com/security/cve/CVE-2022-50444
- https://www.suse.com/security/cve/CVE-2022-50454
- https://www.suse.com/security/cve/CVE-2022-50458
- https://www.suse.com/security/cve/CVE-2022-50459
- https://www.suse.com/security/cve/CVE-2022-50467
- https://www.suse.com/security/cve/CVE-2023-1380
- https://www.suse.com/security/cve/CVE-2023-28328
- https://www.suse.com/security/cve/CVE-2023-31248
- https://www.suse.com/security/cve/CVE-2023-3772
- https://www.suse.com/security/cve/CVE-2023-39197
- https://www.suse.com/security/cve/CVE-2023-42753
- https://www.suse.com/security/cve/CVE-2023-53147
- https://www.suse.com/security/cve/CVE-2023-53178
- https://www.suse.com/security/cve/CVE-2023-53179
- https://www.suse.com/security/cve/CVE-2023-53213
- https://www.suse.com/security/cve/CVE-2023-53265
- https://www.suse.com/security/cve/CVE-2023-53273
- https://www.suse.com/security/cve/CVE-2023-53304
- https://www.suse.com/security/cve/CVE-2023-53321
- https://www.suse.com/security/cve/CVE-2023-53333
- https://www.suse.com/security/cve/CVE-2023-53438
- https://www.suse.com/security/cve/CVE-2023-53464
- https://www.suse.com/security/cve/CVE-2023-53492
- https://www.suse.com/security/cve/CVE-2024-26583
- https://www.suse.com/security/cve/CVE-2024-26584
- https://www.suse.com/security/cve/CVE-2024-58240
- https://www.suse.com/security/cve/CVE-2025-21969
- https://www.suse.com/security/cve/CVE-2025-38184
- https://www.suse.com/security/cve/CVE-2025-38488
- https://www.suse.com/security/cve/CVE-2025-38553
- https://www.suse.com/security/cve/CVE-2025-38572
- https://www.suse.com/security/cve/CVE-2025-38664
- https://www.suse.com/security/cve/CVE-2025-38685
- https://www.suse.com/security/cve/CVE-2025-38713
- https://www.suse.com/security/cve/CVE-2025-39751
- https://www.suse.com/security/cve/CVE-2025-39823