[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2025:0784-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":102,"duplicates":103,"related":104,"reserved_at":9,"published_at":149,"modified_at":150,"state":9,"summary":151,"references_raw":153,"kevs":646,"epss":9,"epss_history":647,"metrics":648,"affected":649},"SUSE-SU-2025:0784-1","Security update for the Linux Kernel\n\nThe SUSE Linux Enterprise 15 SP6 Confidential Computing kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2024-26708: mptcp: fastopen and PM-trigger subflow shutdown can race (bsc#1222672).\n- CVE-2024-44974: mptcp: pm: avoid possible UaF when selecting endp (bsc#1230235).\n- CVE-2024-45009: mptcp: pm: only decrement add_addr_accepted for MPJ req (bsc#1230438).\n- CVE-2024-45010: mptcp: pm: only mark 'subflow' endp as available (bsc#1230439).\n- CVE-2024-50085: mptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow (bsc#1232508).\n- CVE-2024-50185: mptcp: handle consistently DSS corruption (bsc#1233109).\n- CVE-2024-53147: exfat: fix out-of-bounds access of directory entries (bsc#1234857).\n- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).\n- CVE-2024-56647: net: Fix icmp host relookup triggering ip_rt_bug (bsc#1235435).\n- CVE-2024-56720: bpf, sockmap: Several fixes to bpf_msg_pop_data (bsc#1235592).\n- CVE-2025-21636: sctp: sysctl: plpmtud_probe_interval: avoid using current->nsproxy (bsc#1236113).\n- CVE-2025-21637: sctp: sysctl: udp_port: avoid using current->nsproxy (bsc#1236114).\n- CVE-2025-21638: sctp: sysctl: auth_enable: avoid using current->nsproxy (bsc#1236115).\n- CVE-2025-21639: sctp: sysctl: rto_min/max: avoid using current->nsproxy (bsc#1236122).\n- CVE-2025-21640: sctp: sysctl: cookie_hmac_alg: avoid using current->nsproxy (bsc#1236123).\n- CVE-2025-21647: sched: sch_cake: add bounds checks to host bulk flow fairness counts (bsc#1236133).\n- CVE-2025-21680: pktgen: Avoid out-of-bounds access in get_imix_entries (bsc#1236700).\n- CVE-2025-21687: vfio/platform: check the bounds of read/write syscalls (bsc#1237045).\n- CVE-2025-21692: net: sched: fix ets qdisc OOB Indexing (bsc#1237028).\n- CVE-2025-21700: net: sched: Disallow replacing of child qdisc from one parent to another (bsc#1237159).\n\nThe following non-security bugs were fixed:\n\n- ACPI: x86: Add skip i2c clients quirk for Vexia EDU ATLA 10 tablet 5V (stable-fixes).\n- ALSA: hda/cirrus: Correct the full scale volume set logic (git-fixes).\n- ALSA: hda/conexant: Add quirk for HP ProBook 450 G4 mute LED (stable-fixes).\n- ALSA: hda/realtek: Fixup ALC225 depop procedure (git-fixes).\n- ALSA: hda: Add error check for snd_ctl_rename_id() in snd_hda_create_dig_out_ctls() (git-fixes).\n- ALSA: seq: Drop UMP events when no UMP-conversion is set (git-fixes).\n- APEI: GHES: Have GHES honor the panic= setting (stable-fixes).\n- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet 5V (stable-fixes).\n- ASoC: SOF: pcm: Clear the susbstream pointer to NULL on close (git-fixes).\n- ASoC: SOF: stream-ipc: Check for cstream nullity in sof_ipc_msg_data() (git-fixes).\n- ASoC: amd: Add ACPI dependency to fix build error (stable-fixes).\n- ASoC: fsl_micfil: Enable default case in micfil_set_quality() (git-fixes).\n- ASoC: rockchip: i2s-tdm: fix shift config for SND_SOC_DAIFMT_DSP_[AB] (git-fixes).\n- Bluetooth: MGMT: Fix slab-use-after-free Read in mgmt_remove_adv_monitor_sync (stable-fixes).\n- HID: Wacom: Add PCI Wacom device support (stable-fixes).\n- HID: hid-steam: Add Deck IMU support (stable-fixes).\n- HID: hid-steam: Add gamepad-only mode switched to by holding options (stable-fixes).\n- HID: hid-steam: Avoid overwriting smoothing parameter (stable-fixes).\n- HID: hid-steam: Clean up locking (stable-fixes).\n- HID: hid-steam: Disable watchdog instead of using a heartbeat (stable-fixes).\n- HID: hid-steam: Do not use cancel_delayed_work_sync in IRQ context (git-fixes).\n- HID: hid-steam: Fix cleanup in probe() (git-fixes).\n- HID: hid-steam: Make sure rumble work is canceled on removal (stable-fixes).\n- HID: hid-steam: Move hidraw input (un)registering to work (git-fixes).\n- HID: hid-steam: Update list of identifiers from SDL (stable-fixes).\n- HID: hid-steam: remove pointless error message (stable-fixes).\n- HID: hid-thrustmaster: fix stack-out-of-bounds read in usb_check_int_endpoints() (git-fixes).\n- HID: multitouch: Add NULL check in mt_input_configured (git-fixes).\n- Input: allocate keycode for phone linking (stable-fixes).\n- KVM: SVM: Propagate error from snp_guest_req_init() to userspace (jsc#PED-348).\n- KVM: VMX: Allow toggling bits in MSR_IA32_RTIT_CTL when enable bit is cleared (git-fixes).\n- KVM: VMX: Fix comment of handle_vmx_instruction() (git-fixes).\n- KVM: VMX: reset the segment cache after segment init in vmx_vcpu_reset() (jsc#PED-348 git-fixes).\n- KVM: arm64: Do not eagerly teardown the vgic on init error (git-fixes).\n- KVM: arm64: Ensure vgic_ready() is ordered against MMIO registration (git-fixes).\n- KVM: arm64: Fix alignment of kvm_hyp_memcache allocations (git-fixes).\n- KVM: arm64: Flush hyp bss section after initialization of variables in bss (git-fixes).\n- KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state (git-fixes)\n- KVM: arm64: vgic-v3: Sanitise guest writes to GICR_INVLPIR (git-fixes).\n- KVM: nSVM: Enter guest mode before initializing nested NPT MMU (git-fixes).\n- KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID disabled (jsc#PED-348 git-fixes).\n- KVM: s390: vsie: fix some corner-cases when grabbing vsie pages (git-fixes bsc#1237155).\n- KVM: x86/mmu: Process atomically-zapped SPTEs after TLB flush (jsc#PED-6143).\n- KVM: x86/mmu: Skip the 'try unsync' path iff the old SPTE was a leaf SPTE (git-fixes).\n- KVM: x86: AMD's IBPB is not equivalent to Intel's IBPB (git-fixes).\n- KVM: x86: Account for KVM-reserved CR4 bits when passing through CR4 on VMX (git-fixes).\n- KVM: x86: Advertise SRSO_USER_KERNEL_NO to userspace (git-fixes).\n- KVM: x86: Avoid double RDPKRU when loading host/guest PKRU (git-fixes).\n- KVM: x86: Cache CPUID.0xD XSTATE offsets+sizes during module init (git-fixes).\n- KVM: x86: Fix a comment inside __kvm_set_or_clear_apicv_inhibit() (git-fixes).\n- KVM: x86: Unconditionally set irr_pending when updating APICv state (jsc#PED-348).\n- KVM: x86: Zero out PV features cache when the CPUID leaf is not present (git-fixes).\n- PCI/DPC: Quirk PIO log size for Intel Raptor Lake-P (stable-fixes).\n- PCI: Use downstream bridges for distributing resources (bsc#1237325).\n- PCI: hookup irq_get_affinity callback (bsc#1236896).\n- PCI: imx6: Simplify clock handling by using clk_bulk*() function (git-fixes).\n- PCI: switchtec: Add Microchip PCI100X device IDs (stable-fixes).\n- Pickup RXE code change introduced by upstream.\n- RDMA/efa: Reset device on probe failure (git-fixes)\n- RDMA/rxe: Improve newline in printing messages (git-fixes)\n- Revert 'blk-throttle: Fix IO hang for a corner case' (git-fixes).\n- Revert 'drm/amd/display: Use HW lock mgr for PSR1' (stable-fixes).\n- USB: Add USB_QUIRK_NO_LPM quirk for sony xperia xz1 smartphone (stable-fixes).\n- USB: Fix the issue of task recovery failure caused by USB status when S4 wakes up (git-fixes).\n- USB: cdc-acm: Fill in Renesas R-Car D3 USB Download mode quirk (git-fixes).\n- USB: gadget: f_midi: f_midi_complete to call queue_work (git-fixes).\n- USB: hub: Ignore non-compliant devices with too many configs or interfaces (stable-fixes).\n- USB: pci-quirks: Fix HCCPARAMS register error for LS7A EHCI (stable-fixes).\n- USB: quirks: add USB_QUIRK_NO_LPM quirk for Teclast dist (stable-fixes).\n- USB: serial: option: add MeiG Smart SLM828 (stable-fixes).\n- USB: serial: option: add Telit Cinterion FN990B compositions (stable-fixes).\n- USB: serial: option: drop MeiG Smart defines (stable-fixes).\n- USB: serial: option: fix Telit Cinterion FN990A name (stable-fixes).\n- Use gcc-13 for build on SLE16 (jsc#PED-10028).\n- acct: block access to kernel internal filesystems (git-fixes).\n- acct: perform last write from workqueue (git-fixes).\n- arm64/mm: Ensure adequate HUGE_MAX_HSTATE (git-fixes)\n- arm64: Handle .ARM.attributes section in linker scripts (git-fixes)\n- arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array (git-fixes)\n- ata: libata-sff: Ensure that we cannot write outside the allocated buffer (stable-fixes).\n- batman-adv: Drop unmanaged ELP metric worker (git-fixes).\n- batman-adv: Ignore neighbor throughput metrics in error case (stable-fixes).\n- batman-adv: fix panic during interface removal (git-fixes).\n- bio-integrity: do not restrict the size of integrity metadata (git-fixes).\n- blk-cgroup: Fix class @block_class's subsystem refcount leakage (bsc#1237558).\n- blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (git-fixes).\n- blk-mq: Make blk_mq_quiesce_tagset() hold the tag list mutex less long (git-fixes).\n- blk-mq: add number of queue calc helper (bsc#1236897).\n- blk-mq: create correct map for fallback case (bsc#1236896).\n- blk-mq: do not count completed flush data request as inflight in case of quiesce (git-fixes).\n- blk-mq: introduce blk_mq_map_hw_queues (bsc#1236896).\n- blk-mq: issue warning when offlining hctx with online isolcpus (bsc#1236897).\n- blk-mq: move cpuhp callback registering out of q->sysfs_lock (git-fixes).\n- blk-mq: register cpuhp callback after hctx is added to xarray table (git-fixes).\n- blk-mq: use hk cpus only when isolcpus=managed_irq is enabled (bsc#1236897).\n- blk_iocost: remove some duplicate irq disable/enables (git-fixes).\n- block, bfq: fix waker_bfqq UAF after bfq_split_bfqq() (git-fixes).\n- block: Clear zone limits for a non-zoned stacked queue (git-fixes).\n- block: Fix elevator_get_default() checking for NULL q->tag_set (git-fixes).\n- block: Fix lockdep warning in blk_mq_mark_tag_wait (git-fixes).\n- block: Fix page refcounts for unaligned buffers in __bio_release_pages() (git-fixes).\n- block: Provide bdev_open_* functions (git-fixes).\n- block: Remove special-casing of compound pages (git-fixes).\n- block: Set memalloc_noio to false on device_add_disk() error path (git-fixes).\n- block: add a disk_has_partscan helper (git-fixes).\n- block: add a partscan sysfs attribute for disks (git-fixes).\n- block: add check of 'minors' and 'first_minor' in device_add_disk() (git-fixes).\n- block: avoid to reuse `hctx` not removed from cpuhp callback list (git-fixes).\n- block: change rq_integrity_vec to respect the iterator (git-fixes).\n- block: copy back bounce buffer to user-space correctly in case of split (git-fixes).\n- block: ensure we hold a queue reference when using queue limits (git-fixes).\n- block: fix and simplify blkdevparts= cmdline parsing (git-fixes).\n- block: fix bio_split_rw_at to take zone_write_granularity into account (git-fixes).\n- block: fix integer overflow in BLKSECDISCARD (git-fixes).\n- block: fix missing dispatching request when queue is started or unquiesced (git-fixes).\n- block: fix ordering between checking BLK_MQ_S_STOPPED request adding (git-fixes).\n- block: fix ordering between checking QUEUE_FLAG_QUIESCED request adding (git-fixes).\n- block: fix sanity checks in blk_rq_map_user_bvec (git-fixes).\n- block: propagate partition scanning errors to the BLKRRPART ioctl (git-fixes).\n- block: remove the blk_flush_integrity call in blk_integrity_unregister (git-fixes).\n- block: retry call probe after request_module in blk_request_module (git-fixes).\n- block: return unsigned int from bdev_io_min (git-fixes).\n- block: sed-opal: avoid possible wrong address reference in read_sed_opal_key() (git-fixes).\n- block: support to account io_ticks precisely (git-fixes).\n- block: use the right type for stub rq_integrity_vec() (git-fixes).\n- bnxt_en: Fix possible memory leak when hwrm_req_replace fails (git-fixes).\n- bnxt_en: Refactor bnxt_ptp_init() (git-fixes).\n- bnxt_en: Unregister PTP during PCI shutdown and suspend (git-fixes).\n- btrfs: fix defrag not merging contiguous extents due to merged extent maps (bsc#1237232).\n- btrfs: fix extent map merging not happening for adjacent extents (bsc#1237232).\n- can: c_can: fix unbalanced runtime PM disable in error path (git-fixes).\n- can: ctucanfd: handle skb allocation failure (git-fixes).\n- can: etas_es58x: fix potential NULL pointer dereference on udev->serial (git-fixes).\n- can: j1939: j1939_sk_send_loop(): fix unable to send messages with data length zero (git-fixes).\n- chelsio/chtls: prevent potential integer overflow on 32bit (git-fixes).\n- clk: mediatek: mt2701-aud: fix conversion to mtk_clk_simple_probe (git-fixes).\n- clk: mediatek: mt2701-bdp: add missing dummy clk (git-fixes).\n- clk: mediatek: mt2701-img: add missing dummy clk (git-fixes).\n- clk: mediatek: mt2701-mm: add missing dummy clk (git-fixes).\n- clk: mediatek: mt2701-vdec: fix conversion to mtk_clk_simple_probe (git-fixes).\n- clk: qcom: clk-alpha-pll: fix alpha mode configuration (git-fixes).\n- clk: qcom: clk-rpmh: prevent integer overflow in recalc_rate (git-fixes).\n- clk: qcom: dispcc-sm6350: Add missing parent_map for a clock (git-fixes).\n- clk: qcom: gcc-mdm9607: Fix cmd_rcgr offset for blsp1_uart6 rcg (git-fixes).\n- clk: qcom: gcc-sm6350: Add missing parent_map for two clocks (git-fixes).\n- clk: qcom: gcc-sm8550: Do not turn off PCIe GDSCs during gdsc_disable() (git-fixes).\n- clk: sunxi-ng: a100: enable MMC clock reparenting (git-fixes).\n- cpu/hotplug: Do not offline the last non-isolated CPU (bsc#1237562).\n- cpu/hotplug: Prevent self deadlock on CPU hot-unplug (bsc#1237562).\n- cpufreq: s3c64xx: Fix compilation warning (stable-fixes).\n- cxgb4: Avoid removal of uninserted tid (git-fixes).\n- cxgb4: use port number to set mac addr (git-fixes).\n- devlink: avoid potential loop in devlink_rel_nested_in_notify_work() (bsc#1237234).\n- dlm: fix srcu_read_lock() return type to int (git-fixes).\n- doc: update managed_irq documentation (bsc#1236897).\n- driver core: bus: add irq_get_affinity callback to bus_type (bsc#1236896).\n- drm/amd/display: Fix Mode Cutoff in DSC Passthrough to DP2.1 Monitor (stable-fixes).\n- drm/amd/pm: Mark MM activity as unsupported (stable-fixes).\n- drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table() (stable-fixes).\n- drm/amdgpu: bail out when failed to load fw in psp_init_cap_microcode() (git-fixes).\n- drm/amdkfd: only flush the validate MES contex (stable-fixes).\n- drm/bridge: it6505: Change definition MAX_HDCP_DOWN_STREAM_COUNT (stable-fixes).\n- drm/bridge: it6505: fix HDCP Bstatus check (stable-fixes).\n- drm/bridge: it6505: fix HDCP CTS KSV list wait timer (stable-fixes).\n- drm/bridge: it6505: fix HDCP CTS compare V matching (stable-fixes).\n- drm/bridge: it6505: fix HDCP encryption when R0 ready (stable-fixes).\n- drm/i915/selftests: avoid using uninitialized context (git-fixes).\n- drm/i915: Drop 64bpp YUV formats from ICL+ SDR planes (stable-fixes).\n- drm/i915: Fix page cleanup on DMA remap failure (git-fixes).\n- drm/modeset: Handle tiled displays in pan_display_atomic (stable-fixes).\n- drm/msm/dpu: Disable dither in phys encoder cleanup (git-fixes).\n- drm/msm/dpu: Do not leak bits_per_component into random DSC_ENC fields (git-fixes).\n- drm/msm: Avoid rounding up to one jiffy (git-fixes).\n- drm/nouveau/pmu: Fix gp10b firmware guard (git-fixes).\n- drm/virtio: New fence for every plane update (stable-fixes).\n- efi: Avoid cold plugged memory for placing the kernel (stable-fixes).\n- efi: libstub: Use '-std=gnu11' to fix build with GCC 15 (stable-fixes).\n- eth: gve: use appropriate helper to set xdp_features (git-fixes).\n- exfat: convert to ctime accessor functions (git-fixes).\n- exfat: fix file being changed by unaligned direct write (git-fixes).\n- exfat: fix zero the unwritten part for dio read (git-fixes).\n- fbdev: omap: use threaded IRQ for LCD DMA (stable-fixes).\n- gpio: bcm-kona: Add missing newline to dev_err format string (git-fixes).\n- gpio: bcm-kona: Fix GPIO lock/unlock for banks above bank 0 (git-fixes).\n- gpio: bcm-kona: Make sure GPIO bits are unlocked when requesting IRQ (git-fixes).\n- gpio: stmpe: Check return value of stmpe_reg_read in stmpe_gpio_irq_sync_unlock (git-fixes).\n- gpiolib: acpi: Add a quirk for Acer Nitro ANV14 (stable-fixes).\n- hfs: Sanity check the root record (git-fixes).\n- i2c: Force ELAN06FA touchpad I2C bus freq to 100KHz (stable-fixes).\n- iavf: allow changing VLAN state without calling PF (git-fixes).\n- ice: Skip PTP HW writes during PTP reset procedure (git-fixes).\n- ice: add ice_adapter for shared data across PFs on the same NIC (bsc#1237415).\n- ice: avoid the PTP hardware semaphore in gettimex64 path (bsc#1237415).\n- ice: check ICE_VSI_DOWN under rtnl_lock when preparing for reset (git-fixes).\n- ice: fix incorrect PHY settings for 100 GB/s (git-fixes).\n- ice: fix max values for dpll pin phase adjust (git-fixes).\n- ice: fold ice_ptp_read_time into ice_ptp_gettimex64 (bsc#1237415).\n- ice: gather page_count()'s of each frag right before XDP prog call (git-fixes).\n- ice: put Rx buffers after being done with current frame (git-fixes).\n- ice: stop storing XDP verdict within ice_rx_buf (git-fixes).\n- ice: use internal pf id instead of function number (git-fixes).\n- idpf: add read memory barrier when checking descriptor done bit (git-fixes).\n- idpf: call set_real_num_queues in idpf_open (bsc#1236661).\n- idpf: convert workqueues to unbound (git-fixes).\n- idpf: fix VF dynamic interrupt ctl register initialization (git-fixes).\n- idpf: fix handling rsc packet with a single segment (git-fixes).\n- igc: Fix HW RX timestamp when passed by ZC XDP (git-fixes).\n- igc: Set buffer type for empty frames in igc_init_empty_frame (git-fixes).\n- igc: return early when failing to read EECD register (git-fixes).\n- iommu/arm-smmu-v3: Clean up more on probe failure (stable-fixes).\n- kabi: fix bus type (bsc#1236896).\n- kabi: fix group_cpus_evenly (bsc#1236897).\n- kasan: do not call find_vm_area() in a PREEMPT_RT kernel (git-fixes).\n- kbuild: userprogs: fix bitsize and target detection on clang (git-fixes).\n- kvm: svm: Fix gctx page leak on invalid inputs (jsc#PED-348).\n- lib/group_cpus: honor housekeeping config when grouping CPUs (bsc#1236897).\n- lib/group_cpus: let group_cpu_evenly return number initialized masks (bsc#1236897).\n- lib/iov_iter: fix import_iovec_ubuf iovec management (git-fixes).\n- lib: stackinit: hide never-taken branch from compiler (stable-fixes).\n- lockdep: Fix upper limit for LOCKDEP_*_BITS configs (stable-fixes).\n- loop: do not set QUEUE_FLAG_NOMERGES (git-fixes).\n- media: cxd2841er: fix 64-bit division on gcc-9 (stable-fixes).\n- media: uvcvideo: Add Kurokesu C1 PRO camera (stable-fixes).\n- media: uvcvideo: Add new quirk definition for the Sonix Technology Co. 292a camera (stable-fixes).\n- media: uvcvideo: Implement dual stream quirk to fix loss of usb packets (stable-fixes).\n- media: vidtv: Fix a null-ptr-deref in vidtv_mux_stop_thread (stable-fixes).\n- mfd: lpc_ich: Add another Gemini Lake ISA bridge PCI device-id (stable-fixes).\n- mmc: core: Respect quirk_max_rate for non-UHS SDIO card (stable-fixes).\n- mmc: mtk-sd: Fix register settings for hs400(es) mode (git-fixes).\n- mmc: sdhci-msm: Correctly set the load for the regulator (stable-fixes).\n- mptcp: export local_address (git-fixes)\n- mptcp: fix NL PM announced address accounting (git-fixes)\n- mptcp: fix data races on local_id (git-fixes)\n- mptcp: fix inconsistent state on fastopen race (bsc#1222672).\n- mptcp: fully established after ADD_ADDR echo on MPJ (git-fixes)\n- mptcp: pass addr to mptcp_pm_alloc_anno_list (git-fixes)\n- mptcp: pm: check add_addr_accept_max before accepting new ADD_ADDR (git-fixes)\n- mptcp: pm: deny endp with signal + subflow + port (git-fixes)\n- mptcp: pm: do not ignore 'subflow' if 'signal' flag is also set (git-fixes)\n- mptcp: pm: do not try to create sf if alloc failed (git-fixes)\n- mptcp: pm: fullmesh: select the right ID later (git-fixes)\n- mptcp: pm: inc RmAddr MIB counter once per RM_ADDR ID (git-fixes)\n- mptcp: pm: only in-kernel cannot have entries with ID 0 (git-fixes)\n- mptcp: pm: re-using ID of unused flushed subflows (git-fixes)\n- mptcp: pm: re-using ID of unused removed ADD_ADDR (git-fixes)\n- mptcp: pm: re-using ID of unused removed subflows (git-fixes)\n- mptcp: pm: reduce indentation blocks (git-fixes)\n- mptcp: pm: remove mptcp_pm_remove_subflow (git-fixes)\n- mptcp: unify pm get_flags_and_ifindex_by_id (git-fixes)\n- mptcp: unify pm get_local_id interfaces (git-fixes)\n- mptcp: unify pm set_flags interfaces (git-fixes)\n- mtd: rawnand: cadence: fix error code in cadence_nand_init() (git-fixes).\n- mtd: rawnand: cadence: fix incorrect device in dma_unmap_single (git-fixes).\n- mtd: rawnand: cadence: fix unchecked dereference (git-fixes).\n- mtd: rawnand: cadence: use dma_map_resource for sdma address (git-fixes).\n- nbd: Fix signal handling (git-fixes).\n- nbd: Improve the documentation of the locking assumptions (git-fixes).\n- nbd: do not allow reconnect after disconnect (git-fixes).\n- net/mlx5: Correct TASR typo into TSAR (git-fixes).\n- net/mlx5: Fix RDMA TX steering prio (git-fixes).\n- net/mlx5: Fix msix vectors to respect platform limit (bsc#1225981).\n- net/mlx5: SF, Fix add port error handling (git-fixes).\n- net/mlx5: Verify support for scheduling element and TSAR type (git-fixes).\n- net/mlx5e: Always start IPsec sequence number from 1 (git-fixes).\n- net/mlx5e: Rely on reqid in IPsec tunnel mode (git-fixes).\n- net/mlx5e: macsec: Maintain TX SA from encoding_sa (git-fixes).\n- net/smc: support ipv4 mapped ipv6 addr client for smc-r v2 (bsc#1236994).\n- net: rose: lock the socket in rose_bind() (git-fixes).\n- net: sfc: Correct key_len for efx_tc_ct_zone_ht_params (git-fixes).\n- net: smc: fix spurious error message from __sock_release() (bsc#1237126).\n- net: wwan: iosm: Fix hibernation by re-binding the driver around it (stable-fixes).\n- nouveau/svm: fix missing folio unlock + put after make_device_exclusive_range() (git-fixes).\n- null_blk: Do not allow runt zone with zone capacity smaller then zone size (git-fixes).\n- null_blk: Fix missing mutex_destroy() at module removal (git-fixes).\n- null_blk: Fix the WARNING: modpost: missing MODULE_DESCRIPTION() (git-fixes).\n- null_blk: Print correct max open zones limit in null_init_zoned_dev() (git-fixes).\n- null_blk: Remove usage of the deprecated ida_simple_xx() API (git-fixes).\n- null_blk: do not cap max_hw_sectors to BLK_DEF_MAX_SECTORS (git-fixes).\n- null_blk: fix validation of block size (git-fixes).\n- nvme-pci: use block layer helpers to calculate num of queues (bsc#1236897).\n- nvme: replace blk_mq_pci_map_queues with blk_mq_map_hw_queues (bsc#1236896).\n- ocfs2: fix incorrect CPU endianness conversion causing mount failure (bsc#1236138).\n- padata: Clean up in padata_do_multithreaded() (bsc#1237563).\n- padata: Honor the caller's alignment in case of chunk_size 0 (bsc#1237563).\n- partitions: ldm: remove the initial kernel-doc notation (git-fixes).\n- pinctrl: cy8c95x0: Respect IRQ trigger settings from firmware (git-fixes).\n- platform/x86/intel-uncore-freq: Ignore minor version change (bsc#1237452).\n- platform/x86/intel-uncore-freq: Increase minor number support (bsc#1237452).\n- platform/x86/intel/tpmi: Add defines to get version information (bsc#1237452).\n- platform/x86: ISST: Ignore minor version change (bsc#1237452).\n- platform/x86: acer-wmi: Ignore AC events (stable-fixes).\n- platform/x86: int3472: Check for adev == NULL (stable-fixes).\n- power: supply: da9150-fg: fix potential overflow (git-fixes).\n- powerpc/64s/mm: Move __real_pte stubs into hash-4k.h (bsc#1215199).\n- powerpc/64s: Rewrite __real_pte() and __rpte_to_hidx() as static inline (bsc#1215199).\n- powerpc/code-patching: Disable KASAN report during patching via temporary mm (bsc#1215199).\n- powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VM_ALLOC (bsc#1215199).\n- powerpc/pseries/iommu: Split Dynamic DMA Window to be used in Hybrid mode (bsc#1235933 bsc#1235932).\n- powerpc/trace: Add support for HAVE_FUNCTION_ARG_ACCESS_API (bsc#1236967).\n- rbd: do not assume RBD_LOCK_STATE_LOCKED for exclusive mappings (git-fixes).\n- rbd: do not assume rbd_is_lock_owner() for exclusive mappings (git-fixes).\n- rbd: do not move requests to the running list on errors (git-fixes).\n- rbd: rename RBD_LOCK_STATE_RELEASING and releasing_wait (git-fixes).\n- regmap-irq: Add missing kfree() (git-fixes).\n- s390/cio: rename bitmap_size() -> idset_bitmap_size() (git-fixes bsc#1236205).\n- s390/futex: Fix FUTEX_OP_ANDN implementation (git-fixes bsc#1237158).\n- s390/iucv: fix receive buffer virtual vs physical address confusion (git-fixes bsc#1236200).\n- s390/pci: Fix SR-IOV for PFs initially in standby (git-fixes bsc#1236752).\n- s390/pci: Fix leak of struct zpci_dev when zpci_add_device() fails (bsc#1236752).\n- s390/pci: Ignore RID for isolated VFs (bsc#1236752).\n- s390/pci: Sort PCI functions prior to creating virtual busses (bsc#1236752).\n- s390/pci: Use topology ID for multi-function devices (bsc#1236752).\n- s390/smp,mcck: fix early IPI handling (git-fixes bsc#1236199).\n- s390/topology: Improve topology detection (bsc#1236591).\n- s390/vfio-ap: Remove gmap_convert_to_secure() from vfio_ap_ops (git-fixes bsc#1236203).\n- scripts/gdb: fix aarch64 userspace detection in get_current_task (stable-fixes).\n- scsi: replace blk_mq_pci_map_queues with blk_mq_map_hw_queues (bsc#1236896).\n- scsi: storvsc: Set correct data length for sending SCSI command without payload (git-fixes).\n- scsi: use block layer helpers to calculate num of queues (bsc#1236897).\n- selftest: hugetlb_dio: fix test naming (git-fixes).\n- selftest: mm: Test if hugepage does not get leaked during __bio_release_pages() (git-fixes).\n- selftests/net/ipsec: Fix Null pointer dereference in rtattr_pack() (stable-fixes).\n- selftests: gpio: gpio-sim: Fix missing chip disablements (stable-fixes).\n- selftests: hugetlb_dio: check for initial conditions to skip in the start (git-fixes).\n- selftests: hugetlb_dio: fixup check for initial conditions to skip in the start (git-fixes).\n- selftests: mptcp: connect: -f: no reconnect (git-fixes).\n- selftests: rtnetlink: update netdevsim ipsec output format (stable-fixes).\n- serial: 8250: Fix fifo underflow on flush (git-fixes).\n- smb: client: fix corruption in cifs_extend_writeback (bsc#1235609).\n- soc/tegra: fuse: Update Tegra234 nvmem keepout list (stable-fixes).\n- spi: atmel-qspi: Memory barriers after memory-mapped I/O (git-fixes).\n- spi: atmel-quadspi: Create `atmel_qspi_ops` to support newer SoC families (stable-fixes).\n- spi: sn-f-ospi: Fix division by zero (git-fixes).\n- tg3: Disable tg3 PCIe AER on system reboot (bsc#1219367).\n- tomoyo: do not emit warning in tomoyo_write_control() (stable-fixes).\n- tools: fix annoying 'mkdir -p ...' logs when building tools in parallel (git-fixes).\n- ublk: fix error code for unsupported command (git-fixes).\n- ublk: fix ublk_ch_mmap() for 64K page size (git-fixes).\n- ublk: move ublk_cancel_dev() out of ub->mutex (git-fixes).\n- ublk: move zone report data out of request pdu (git-fixes).\n- usb: cdc-acm: Check control transfer buffer size before access (git-fixes).\n- usb: cdc-acm: Fix handling of oversized fragments (git-fixes).\n- usb: core: fix pipe creation for get_bMaxPacketSize0 (git-fixes).\n- usb: dwc2: gadget: remove of_node reference upon udc_stop (git-fixes).\n- usb: dwc3: Fix timeout issue during controller enter/exit from halt state (git-fixes).\n- usb: dwc3: core: Defer the probe until USB power supply ready (git-fixes).\n- usb: gadget: core: flush gadget workqueue after device removal (git-fixes).\n- usb: gadget: f_midi: Fixing wMaxPacketSize exceeded issue during MIDI bind retries (git-fixes).\n- usb: gadget: f_midi: fix MIDI Streaming descriptor lengths (git-fixes).\n- usb: gadget: udc: renesas_usb3: Fix compiler warning (git-fixes).\n- usb: quirks: Add NO_LPM quirk for TOSHIBA TransMemory-Mx device (git-fixes).\n- usb: roles: set switch registered flag early on (git-fixes).\n- usb: xhci: Fix NULL pointer dereference on certain command aborts (git-fixes).\n- usbnet: ipheth: document scope of NCM implementation (stable-fixes).\n- util_macros.h: fix/rework find_closest() macros (git-fixes).\n- vhost/net: Set num_buffers for virtio 1.0 (git-fixes).\n- virtio: blk/scsi: replace blk_mq_virtio_map_queues with blk_mq_map_hw_queues (bsc#1236896).\n- virtio: blk/scsi: use block layer helpers to calculate num of queues (bsc#1236897).\n- virtio: hookup irq_get_affinity callback (bsc#1236896).\n- virtio_blk: reverse request order in virtio_queue_rqs (git-fixes).\n- wifi: ath12k: fix handling of 6 GHz rules (git-fixes).\n- wifi: brcmfmac: Check the return value of of_property_read_string_index() (stable-fixes).\n- wifi: brcmfmac: fix NULL pointer dereference in brcmf_txfinalize() (stable-fixes).\n- wifi: brcmsmac: add gain range check to wlc_phy_iqcal_gainparams_nphy() (stable-fixes).\n- wifi: iwlwifi: avoid memory leak (stable-fixes).\n- wifi: mt76: mt7921u: Add VID/PID for TP-Link TXE50UH (stable-fixes).\n- wifi: rtw88: sdio: Fix disconnection after beacon loss (stable-fixes).\n- wifi: rtw89: add crystal_cap check to avoid setting as overflow value (stable-fixes).\n- x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (git-fixes).\n- x86/asm: Make serialize() always_inline (git-fixes).\n- x86/bugs: Add SRSO_USER_KERNEL_NO support (git-fixes).\n- x86/cpu/kvm: SRSO: Fix possible missing IBPB on VM-Exit (git-fixes).\n- x86/cpu: Add Lunar Lake to list of CPUs with a broken MONITOR implementation (git-fixes).\n- x86/mm: Carve out INVLPG inline asm for use by others (git-fixes).\n- x86/xen: add FRAME_END to xen_hypercall_hvm() (git-fixes).\n- x86/xen: allow larger contiguous memory regions in PV guests (git-fixes).\n- x86/xen: fix xen_hypercall_hvm() to not clobber %rbx (git-fixes).\n- x86/xen: Grab mm lock before grabbing pt lock (git-fixes).\n- xen/swiotlb: relax alignment requirements (git-fixes).\n- xhci: dbgtty: remove kfifo_out() wrapper (git-fixes).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98,100],{"_key":15},"CVE-2023-52924",{"_key":17},"CVE-2023-52925",{"_key":19},"CVE-2024-26708",{"_key":21},"CVE-2024-26810",{"_key":23},"CVE-2024-41055",{"_key":25},"CVE-2024-44974",{"_key":27},"CVE-2024-45009",{"_key":29},"CVE-2024-45010",{"_key":31},"CVE-2024-47701",{"_key":33},"CVE-2024-49884",{"_key":35},"CVE-2024-49950",{"_key":37},"CVE-2024-50073",{"_key":39},"CVE-2024-50085",{"_key":41},"CVE-2024-50115",{"_key":43},"CVE-2024-50185",{"_key":45},"CVE-2024-53147",{"_key":47},"CVE-2024-53173",{"_key":49},"CVE-2024-53226",{"_key":51},"CVE-2024-53239",{"_key":53},"CVE-2024-56539",{"_key":55},"CVE-2024-56548",{"_key":57},"CVE-2024-56568",{"_key":59},"CVE-2024-56579",{"_key":61},"CVE-2024-56605",{"_key":63},"CVE-2024-56647",{"_key":65},"CVE-2024-56720",{"_key":67},"CVE-2024-57889",{"_key":69},"CVE-2024-57948",{"_key":71},"CVE-2025-21636",{"_key":73},"CVE-2025-21637",{"_key":75},"CVE-2025-21638",{"_key":77},"CVE-2025-21639",{"_key":79},"CVE-2025-21640",{"_key":81},"CVE-2025-21647",{"_key":83},"CVE-2025-21680",{"_key":85},"CVE-2025-21684",{"_key":87},"CVE-2025-21687",{"_key":89},"CVE-2025-21688",{"_key":91},"CVE-2025-21689",{"_key":93},"CVE-2025-21690",{"_key":95},"CVE-2025-21692",{"_key":97},"CVE-2025-21697",{"_key":99},"CVE-2025-21699",{"_key":101},"CVE-2025-21700",[],[],[105,106,107,108,109,110,111,112,113,114,115,116,117,118,119,120,121,122,123,124,125,126,127,128,129,130,131,132,133,134,135,136,137,138,139,140,141,142,143,144,145,146,147,148],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},{"_key":71},{"_key":73},{"_key":75},{"_key":77},{"_key":79},{"_key":81},{"_key":83},{"_key":85},{"_key":87},{"_key":89},{"_key":91},{"_key":93},{"_key":95},{"_key":97},{"_key":99},{"_key":101},"2025-03-05T13:04:51Z","2026-02-04T02:22:12.440776Z",{"cisa_kev":152,"cisa_ransomware":152,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[154,160,165,169,173,177,181,185,189,193,197,201,205,209,213,217,221,225,229,233,237,241,245,249,253,257,261,265,269,273,277,281,285,289,293,297,301,305,309,313,317,321,325,329,333,337,341,345,349,353,357,361,365,369,373,377,381,385,389,393,397,401,405,409,413,417,421,425,429,433,437,441,445,449,453,457,461,465,469,474,478,482,486,490,494,498,502,506,510,514,518,522,526,530,534,538,542,546,550,554,558,562,566,570,574,578,582,586,590,594,598,602,606,610,614,618,622,626,630,634,638,642],{"url":155,"sources":156,"tags":158},"https://www.suse.com/support/update/announcement/2025/suse-su-20250784-1/",[157],"osv_suse",[159],"Advisory",{"url":161,"sources":162,"tags":163},"https://bugzilla.suse.com/1012628",[157],[164],"REPORT",{"url":166,"sources":167,"tags":168},"https://bugzilla.suse.com/1215199",[157],[164],{"url":170,"sources":171,"tags":172},"https://bugzilla.suse.com/1219367",[157],[164],{"url":174,"sources":175,"tags":176},"https://bugzilla.suse.com/1222672",[157],[164],{"url":178,"sources":179,"tags":180},"https://bugzilla.suse.com/1222803",[157],[164],{"url":182,"sources":183,"tags":184},"https://bugzilla.suse.com/1225742",[157],[164],{"url":186,"sources":187,"tags":188},"https://bugzilla.suse.com/1225981",[157],[164],{"url":190,"sources":191,"tags":192},"https://bugzilla.suse.com/1228521",[157],[164],{"url":194,"sources":195,"tags":196},"https://bugzilla.suse.com/1230235",[157],[164],{"url":198,"sources":199,"tags":200},"https://bugzilla.suse.com/1230438",[157],[164],{"url":202,"sources":203,"tags":204},"https://bugzilla.suse.com/1230439",[157],[164],{"url":206,"sources":207,"tags":208},"https://bugzilla.suse.com/1231920",[157],[164],{"url":210,"sources":211,"tags":212},"https://bugzilla.suse.com/1232159",[157],[164],{"url":214,"sources":215,"tags":216},"https://bugzilla.suse.com/1232198",[157],[164],{"url":218,"sources":219,"tags":220},"https://bugzilla.suse.com/1232201",[157],[164],{"url":222,"sources":223,"tags":224},"https://bugzilla.suse.com/1232508",[157],[164],{"url":226,"sources":227,"tags":228},"https://bugzilla.suse.com/1232520",[157],[164],{"url":230,"sources":231,"tags":232},"https://bugzilla.suse.com/1232919",[157],[164],{"url":234,"sources":235,"tags":236},"https://bugzilla.suse.com/1233109",[157],[164],{"url":238,"sources":239,"tags":240},"https://bugzilla.suse.com/1234853",[157],[164],{"url":242,"sources":243,"tags":244},"https://bugzilla.suse.com/1234857",[157],[164],{"url":246,"sources":247,"tags":248},"https://bugzilla.suse.com/1234891",[157],[164],{"url":250,"sources":251,"tags":252},"https://bugzilla.suse.com/1234963",[157],[164],{"url":254,"sources":255,"tags":256},"https://bugzilla.suse.com/1235032",[157],[164],{"url":258,"sources":259,"tags":260},"https://bugzilla.suse.com/1235054",[157],[164],{"url":262,"sources":263,"tags":264},"https://bugzilla.suse.com/1235061",[157],[164],{"url":266,"sources":267,"tags":268},"https://bugzilla.suse.com/1235073",[157],[164],{"url":270,"sources":271,"tags":272},"https://bugzilla.suse.com/1235435",[157],[164],{"url":274,"sources":275,"tags":276},"https://bugzilla.suse.com/1235592",[157],[164],{"url":278,"sources":279,"tags":280},"https://bugzilla.suse.com/1235609",[157],[164],{"url":282,"sources":283,"tags":284},"https://bugzilla.suse.com/1235932",[157],[164],{"url":286,"sources":287,"tags":288},"https://bugzilla.suse.com/1235933",[157],[164],{"url":290,"sources":291,"tags":292},"https://bugzilla.suse.com/1236113",[157],[164],{"url":294,"sources":295,"tags":296},"https://bugzilla.suse.com/1236114",[157],[164],{"url":298,"sources":299,"tags":300},"https://bugzilla.suse.com/1236115",[157],[164],{"url":302,"sources":303,"tags":304},"https://bugzilla.suse.com/1236122",[157],[164],{"url":306,"sources":307,"tags":308},"https://bugzilla.suse.com/1236123",[157],[164],{"url":310,"sources":311,"tags":312},"https://bugzilla.suse.com/1236133",[157],[164],{"url":314,"sources":315,"tags":316},"https://bugzilla.suse.com/1236138",[157],[164],{"url":318,"sources":319,"tags":320},"https://bugzilla.suse.com/1236199",[157],[164],{"url":322,"sources":323,"tags":324},"https://bugzilla.suse.com/1236200",[157],[164],{"url":326,"sources":327,"tags":328},"https://bugzilla.suse.com/1236203",[157],[164],{"url":330,"sources":331,"tags":332},"https://bugzilla.suse.com/1236205",[157],[164],{"url":334,"sources":335,"tags":336},"https://bugzilla.suse.com/1236573",[157],[164],{"url":338,"sources":339,"tags":340},"https://bugzilla.suse.com/1236575",[157],[164],{"url":342,"sources":343,"tags":344},"https://bugzilla.suse.com/1236576",[157],[164],{"url":346,"sources":347,"tags":348},"https://bugzilla.suse.com/1236591",[157],[164],{"url":350,"sources":351,"tags":352},"https://bugzilla.suse.com/1236661",[157],[164],{"url":354,"sources":355,"tags":356},"https://bugzilla.suse.com/1236677",[157],[164],{"url":358,"sources":359,"tags":360},"https://bugzilla.suse.com/1236700",[157],[164],{"url":362,"sources":363,"tags":364},"https://bugzilla.suse.com/1236752",[157],[164],{"url":366,"sources":367,"tags":368},"https://bugzilla.suse.com/1236821",[157],[164],{"url":370,"sources":371,"tags":372},"https://bugzilla.suse.com/1236822",[157],[164],{"url":374,"sources":375,"tags":376},"https://bugzilla.suse.com/1236896",[157],[164],{"url":378,"sources":379,"tags":380},"https://bugzilla.suse.com/1236897",[157],[164],{"url":382,"sources":383,"tags":384},"https://bugzilla.suse.com/1236952",[157],[164],{"url":386,"sources":387,"tags":388},"https://bugzilla.suse.com/1236967",[157],[164],{"url":390,"sources":391,"tags":392},"https://bugzilla.suse.com/1236994",[157],[164],{"url":394,"sources":395,"tags":396},"https://bugzilla.suse.com/1237007",[157],[164],{"url":398,"sources":399,"tags":400},"https://bugzilla.suse.com/1237017",[157],[164],{"url":402,"sources":403,"tags":404},"https://bugzilla.suse.com/1237025",[157],[164],{"url":406,"sources":407,"tags":408},"https://bugzilla.suse.com/1237028",[157],[164],{"url":410,"sources":411,"tags":412},"https://bugzilla.suse.com/1237045",[157],[164],{"url":414,"sources":415,"tags":416},"https://bugzilla.suse.com/1237126",[157],[164],{"url":418,"sources":419,"tags":420},"https://bugzilla.suse.com/1237132",[157],[164],{"url":422,"sources":423,"tags":424},"https://bugzilla.suse.com/1237139",[157],[164],{"url":426,"sources":427,"tags":428},"https://bugzilla.suse.com/1237155",[157],[164],{"url":430,"sources":431,"tags":432},"https://bugzilla.suse.com/1237158",[157],[164],{"url":434,"sources":435,"tags":436},"https://bugzilla.suse.com/1237159",[157],[164],{"url":438,"sources":439,"tags":440},"https://bugzilla.suse.com/1237232",[157],[164],{"url":442,"sources":443,"tags":444},"https://bugzilla.suse.com/1237234",[157],[164],{"url":446,"sources":447,"tags":448},"https://bugzilla.suse.com/1237325",[157],[164],{"url":450,"sources":451,"tags":452},"https://bugzilla.suse.com/1237415",[157],[164],{"url":454,"sources":455,"tags":456},"https://bugzilla.suse.com/1237452",[157],[164],{"url":458,"sources":459,"tags":460},"https://bugzilla.suse.com/1237558",[157],[164],{"url":462,"sources":463,"tags":464},"https://bugzilla.suse.com/1237562",[157],[164],{"url":466,"sources":467,"tags":468},"https://bugzilla.suse.com/1237563",[157],[164],{"url":470,"sources":471,"tags":472},"https://www.suse.com/security/cve/CVE-2023-52924",[157],[473],"WEB",{"url":475,"sources":476,"tags":477},"https://www.suse.com/security/cve/CVE-2023-52925",[157],[473],{"url":479,"sources":480,"tags":481},"https://www.suse.com/security/cve/CVE-2024-26708",[157],[473],{"url":483,"sources":484,"tags":485},"https://www.suse.com/security/cve/CVE-2024-26810",[157],[473],{"url":487,"sources":488,"tags":489},"https://www.suse.com/security/cve/CVE-2024-41055",[157],[473],{"url":491,"sources":492,"tags":493},"https://www.suse.com/security/cve/CVE-2024-44974",[157],[473],{"url":495,"sources":496,"tags":497},"https://www.suse.com/security/cve/CVE-2024-45009",[157],[473],{"url":499,"sources":500,"tags":501},"https://www.suse.com/security/cve/CVE-2024-45010",[157],[473],{"url":503,"sources":504,"tags":505},"https://www.suse.com/security/cve/CVE-2024-47701",[157],[473],{"url":507,"sources":508,"tags":509},"https://www.suse.com/security/cve/CVE-2024-49884",[157],[473],{"url":511,"sources":512,"tags":513},"https://www.suse.com/security/cve/CVE-2024-49950",[157],[473],{"url":515,"sources":516,"tags":517},"https://www.suse.com/security/cve/CVE-2024-50073",[157],[473],{"url":519,"sources":520,"tags":521},"https://www.suse.com/security/cve/CVE-2024-50085",[157],[473],{"url":523,"sources":524,"tags":525},"https://www.suse.com/security/cve/CVE-2024-50115",[157],[473],{"url":527,"sources":528,"tags":529},"https://www.suse.com/security/cve/CVE-2024-50185",[157],[473],{"url":531,"sources":532,"tags":533},"https://www.suse.com/security/cve/CVE-2024-53147",[157],[473],{"url":535,"sources":536,"tags":537},"https://www.suse.com/security/cve/CVE-2024-53173",[157],[473],{"url":539,"sources":540,"tags":541},"https://www.suse.com/security/cve/CVE-2024-53226",[157],[473],{"url":543,"sources":544,"tags":545},"https://www.suse.com/security/cve/CVE-2024-53239",[157],[473],{"url":547,"sources":548,"tags":549},"https://www.suse.com/security/cve/CVE-2024-56539",[157],[473],{"url":551,"sources":552,"tags":553},"https://www.suse.com/security/cve/CVE-2024-56548",[157],[473],{"url":555,"sources":556,"tags":557},"https://www.suse.com/security/cve/CVE-2024-56568",[157],[473],{"url":559,"sources":560,"tags":561},"https://www.suse.com/security/cve/CVE-2024-56579",[157],[473],{"url":563,"sources":564,"tags":565},"https://www.suse.com/security/cve/CVE-2024-56605",[157],[473],{"url":567,"sources":568,"tags":569},"https://www.suse.com/security/cve/CVE-2024-56647",[157],[473],{"url":571,"sources":572,"tags":573},"https://www.suse.com/security/cve/CVE-2024-56720",[157],[473],{"url":575,"sources":576,"tags":577},"https://www.suse.com/security/cve/CVE-2024-57889",[157],[473],{"url":579,"sources":580,"tags":581},"https://www.suse.com/security/cve/CVE-2024-57948",[157],[473],{"url":583,"sources":584,"tags":585},"https://www.suse.com/security/cve/CVE-2025-21636",[157],[473],{"url":587,"sources":588,"tags":589},"https://www.suse.com/security/cve/CVE-2025-21637",[157],[473],{"url":591,"sources":592,"tags":593},"https://www.suse.com/security/cve/CVE-2025-21638",[157],[473],{"url":595,"sources":596,"tags":597},"https://www.suse.com/security/cve/CVE-2025-21639",[157],[473],{"url":599,"sources":600,"tags":601},"https://www.suse.com/security/cve/CVE-2025-21640",[157],[473],{"url":603,"sources":604,"tags":605},"https://www.suse.com/security/cve/CVE-2025-21647",[157],[473],{"url":607,"sources":608,"tags":609},"https://www.suse.com/security/cve/CVE-2025-21680",[157],[473],{"url":611,"sources":612,"tags":613},"https://www.suse.com/security/cve/CVE-2025-21684",[157],[473],{"url":615,"sources":616,"tags":617},"https://www.suse.com/security/cve/CVE-2025-21687",[157],[473],{"url":619,"sources":620,"tags":621},"https://www.suse.com/security/cve/CVE-2025-21688",[157],[473],{"url":623,"sources":624,"tags":625},"https://www.suse.com/security/cve/CVE-2025-21689",[157],[473],{"url":627,"sources":628,"tags":629},"https://www.suse.com/security/cve/CVE-2025-21690",[157],[473],{"url":631,"sources":632,"tags":633},"https://www.suse.com/security/cve/CVE-2025-21692",[157],[473],{"url":635,"sources":636,"tags":637},"https://www.suse.com/security/cve/CVE-2025-21697",[157],[473],{"url":639,"sources":640,"tags":641},"https://www.suse.com/security/cve/CVE-2025-21699",[157],[473],{"url":643,"sources":644,"tags":645},"https://www.suse.com/security/cve/CVE-2025-21700",[157],[473],[],[],[],[650,663,668,673],{"ecosystem":651,"name":652,"vendor":653,"product":654,"cpe_part":9,"purl_type":655,"purl_namespace":653,"purl_name":654,"source":9,"versions":656},"SUSE Linux Enterprise","kernel-coco_debug","suse","kernel-coco_debug&distro=SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6","rpm",[657],{"version":658,"is_range":659,"range_type":660,"version_start":9,"version_start_type":9,"version_end":661,"version_end_type":662,"fixed_in":9},"lt6_4_0_15061_18_coco15sp6_1",true,"ecosystem","6.4.0-15061.18.coco15sp6.1","excluding",{"ecosystem":651,"name":664,"vendor":653,"product":665,"cpe_part":9,"purl_type":655,"purl_namespace":653,"purl_name":665,"source":9,"versions":666},"kernel-coco","kernel-coco&distro=SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",[667],{"version":658,"is_range":659,"range_type":660,"version_start":9,"version_start_type":9,"version_end":661,"version_end_type":662,"fixed_in":9},{"ecosystem":651,"name":669,"vendor":653,"product":670,"cpe_part":9,"purl_type":655,"purl_namespace":653,"purl_name":670,"source":9,"versions":671},"kernel-source-coco","kernel-source-coco&distro=SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",[672],{"version":658,"is_range":659,"range_type":660,"version_start":9,"version_start_type":9,"version_end":661,"version_end_type":662,"fixed_in":9},{"ecosystem":651,"name":674,"vendor":653,"product":675,"cpe_part":9,"purl_type":655,"purl_namespace":653,"purl_name":675,"source":9,"versions":676},"kernel-syms-coco","kernel-syms-coco&distro=SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",[677],{"version":658,"is_range":659,"range_type":660,"version_start":9,"version_start_type":9,"version_end":661,"version_end_type":662,"fixed_in":9}]