SUSE-SU-2025:1293-1

Advisory lineage Upstream: 222 Downstream: 0

Upstream

CVE-2017-5753 CVE-2021-46925 CVE-2021-47633 CVE-2021-47645 CVE-2021-47648 CVE-2021-47652

Published: 16 Apr 2025, 07:51

Last modified:04 Feb 2026, 02:33

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

16 Apr 2025, 07:51

Published

Vulnerability first disclosed

04 Feb 2026, 02:33

Last Modified

Vulnerability information updated

Description

Security update for the Linux Kernel The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-46925: Fixed kernel panic caused by race of smc_sock (bsc#1220466). - CVE-2021-47645: media: staging: media: zoran: calculate the right buffer number for zoran_reap_stat_com (bsc#1237767). - CVE-2021-47648: gpu: host1x: Fix a memory leak in 'host1x_remove()' (bsc#1237725). - CVE-2022-49046: i2c: dev: check return value when calling dev_set_name() (bsc#1237842). - CVE-2022-49051: net: usb: aqc111: Fix out-of-bounds accesses in RX fixup (bsc#1237903). - CVE-2022-49053: scsi: target: tcmu: Fix possible page UAF (bsc#1237918). - CVE-2022-49059: nfc: nci: add flush_workqueue to prevent uaf (bsc#1238007). - CVE-2022-49074: irqchip/gic-v3: Fix GICR_CTLR.RWP polling (bsc#1237728). - CVE-2022-49075: btrfs: fix qgroup reserve overflow the qgroup limit (bsc#1237733). - CVE-2022-49084: qede: confirm skb is allocated before using (bsc#1237751). - CVE-2022-49107: ceph: fix memory leak in ceph_readdir when note_last_dentry returns error (bsc#1237973). - CVE-2022-49109: ceph: fix inode reference leakage in ceph_get_snapdir() (bsc#1237836). - CVE-2022-49119: scsi: pm8001: Fix memory leak in pm8001_chip_fw_flash_update_req() (bsc#1237925). - CVE-2022-49120: scsi: pm8001: Fix task leak in pm8001_send_abort_all() (bsc#1237969). - CVE-2022-49209: bpf, sockmap: Fix memleak in tcp_bpf_sendmsg while sk msg is full (bsc#1238252). - CVE-2022-49220: dax: make sure inodes are flushed before destroy cache (bsc#1237936). - CVE-2022-49275: can: m_can: m_can_tx_handler(): fix use after free of skb (bsc#1238719). - CVE-2022-49286: tpm: use try_get_ops() in tpm-space.c (bsc#1238647). - CVE-2022-49292: ALSA: oss: Fix PCM OSS buffer allocation overflow (bsc#1238625). - CVE-2022-49308: extcon: Modify extcon device to be created after driver data is set (bsc#1238654). - CVE-2022-49331: nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling (bsc#1237813). - CVE-2022-49344: af_unix: Fix a data-race in unix_dgram_peer_wake_me() (bsc#1237988). - CVE-2022-49367: net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxx_mdios_register (bsc#1238447). - CVE-2022-49370: firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle (bsc#1238467). - CVE-2022-49372: tcp: tcp_rtx_synack() can be called from process context (bsc#1238251). - CVE-2022-49388: ubi: ubi_create_volume: Fix use-after-free when volume creation failed (bsc#1237934). - CVE-2022-49395: um: Fix out-of-bounds read in LDT setup (bsc#1237953). - CVE-2022-49397: phy: qcom-qmp: fix struct clk leak on probe errors (bsc#1237823). - CVE-2022-49404: RDMA/hfi1: Fix potential integer multiplication overflow errors (bsc#1238430). - CVE-2022-49416: wifi: mac80211: fix use-after-free in chanctx code (bsc#1238293). - CVE-2022-49433: RDMA/hfi1: Prevent use of lock before it is initialized (bsc#1238268). - CVE-2022-49472: net: phy: micrel: Allow probing without .driver_data (bsc#1238951). - CVE-2022-49488: drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock (bsc#1238600). - CVE-2022-49495: drm/msm/hdmi: check return value after calling platform_get_resource_byname() (bsc#1237932). - CVE-2022-49497: net: remove two BUG() from skb_checksum_help() (bsc#1238946). - CVE-2022-49505: NFC: NULL out the dev->rfkill to prevent UAF (bsc#1238615). - CVE-2022-49516: ice: always check VF VSI pointer values (bsc#1238953). - CVE-2022-49519: ath10k: skip ath10k_halt during suspend for driver state RESTARTING (bsc#1238943). - CVE-2022-49524: media: pci: cx23885: Fix the error handling in cx23885_initdev() (bsc#1238949). - CVE-2022-49530: drm/amd/pm: fix double free in si_parse_power_table() (bsc#1238944). - CVE-2022-49538: ALSA: jack: Fix mutex call in snd_jack_report() (bsc#1238843). - CVE-2022-49544: ipw2x00: Fix potential NULL dereference in libipw_xmit() (bsc#1238721). - CVE-2022-49545: ALSA: usb-audio: Cancel pending work at closing a MIDI substream (bsc#1238729). - CVE-2022-49546: x86/kexec: Fix double-free of elf header buffer (bsc#1238750). - CVE-2022-49563: crypto: qat - add param check for RSA (bsc#1238787). - CVE-2022-49564: crypto: qat - add param check for DH (bsc#1238789). - CVE-2022-49578: ip: Fix data-races around sysctl_ip_prot_sock. (bsc#1238794). - CVE-2022-49581: be2net: Fix buffer overflow in be_get_module_eeprom (bsc#1238540). - CVE-2022-49589: kABI: protect mr_ifc_count change (bsc#1238598). - CVE-2022-49605: igc: Reinstate IGC_REMOVED logic and implement it properly (bsc#1238433). - CVE-2022-49607: perf/core: Fix data race between perf_event_set_output() and perf_mmap_close() (bsc#1238817). - CVE-2022-49610: KVM: VMX: Prevent RSB underflow before vmenter (bsc#1238952). - CVE-2022-49619: net: sfp: fix memory leak in sfp_probe() (bsc#1239003). - CVE-2022-49620: net: tipc: fix possible refcount leak in tipc_sk_create() (bsc#1239002). - CVE-2022-49640: sysctl: Fix data races in proc_douintvec_minmax() (bsc#1237782). - CVE-2022-49641: sysctl: Fix data races in proc_douintvec() (bsc#1237831). - CVE-2022-49667: net: bonding: fix use-after-free after 802.3ad slave unbind (bsc#1238282). - CVE-2022-49672: net: tun: unlink NAPI from device on destruction (bsc#1238816). - CVE-2022-49711: bus: fsl-mc-bus: fix KASAN use-after-free in fsl_mc_bus_remove() (bsc#1238416). - CVE-2022-49727: ipv6: Fix signed integer overflow in l2tp_ip6_sendmsg (bsc#1239059). - CVE-2022-49740: wifi: brcmfmac: Check the count value of channel spec to prevent out-of-bounds reads (bsc#1240233). - CVE-2023-52935: mm/khugepaged: fix ->anon_vma race (bsc#1240276). - CVE-2023-52997: ipv4: prevent potential spectre v1 gadget in ip_metrics_convert() (bsc#1240303). - CVE-2023-53010: bnxt: Do not read past the end of test names (bsc#1240290). - CVE-2023-53019: net: mdio: validate parameter addr in mdiobus_get_phy() (bsc#1240286). - CVE-2024-35910: kABI fix for tcp: properly terminate timers for kernel sockets (bsc#1224489). - CVE-2024-36968: Bluetooth: L2CAP: Fix div-by-zero in l2cap_le_flowctl_init() (bsc#1226130). - CVE-2024-38559: scsi: qedf: Ensure the copied buf is NUL terminated (bsc#1226785). - CVE-2024-41005: netpoll: Fix race condition in netpoll_owner_active (bsc#1227858). - CVE-2024-49571: net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg (bsc#1235733). - CVE-2024-49935: ACPI: PAD: fix crash in exit_round_robin() (bsc#1232370). - CVE-2024-49940: l2tp: prevent possible tunnel refcount underflow (bsc#1232812). - CVE-2024-50269: usb: musb: sunxi: Fix accessing an released usb phy (bsc#1233458). - CVE-2024-53124: net: fix data-races around sk->sk_forward_alloc (bsc#1234074). - CVE-2024-53140: netlink: terminate outstanding dump on socket close (bsc#1234222). - CVE-2024-53680: ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (bsc#1235715). - CVE-2024-56640: net/smc: fix LGR and link use-after-free issue (bsc#1235436). - CVE-2024-56770: net/sched: netem: account for backlog updates from child qdisc (bsc#1235637). - CVE-2024-57900: ila: serialize calls to nf_register_net_hooks() (bsc#1235973). - CVE-2024-57973: rdma/cxgb4: Prevent potential integer overflow on 32bit (bsc#1238531). - CVE-2024-57979: kABI workaround for pps changes (bsc#1238521). - CVE-2024-57996: net_sched: sch_sfq: do not allow 1 packet limit (bsc#1239076). - CVE-2024-58014: wifi: brcmsmac: add gain range check to wlc_phy_iqcal_gainparams_nphy() (bsc#1239109). - CVE-2024-58052: drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_table (bsc#1238986). - CVE-2024-58071: team: prevent adding a device which is already a team device lower (bsc#1238970) - CVE-2024-58072: wifi: rtlwifi: remove unused check_buddy_priv (bsc#1238964). - CVE-2024-58083: KVM: Explicitly verify target vCPU is online in kvm_get_vcpu() (bsc#1239036). - CVE-2025-21703: netem: Update sch->q.qlen before qdisc_tree_reduce_backlog() (bsc#1237313). - CVE-2025-21708: net: usb: rtl8150: enable basic endpoint checking (bsc#1239087). - CVE-2025-21744: wifi: brcmfmac: fix NULL pointer dereference in brcmf_txfinalize() (bsc#1238903). - CVE-2025-21759: ipv6: mcast: extend RCU protection in igmp6_send() (bsc#1238738). - CVE-2025-21760: ndisc: extend RCU protection in ndisc_send_skb() (bsc#1238763). - CVE-2025-21762: arp: use RCU protection in arp_xmit() (bsc#1238780). - CVE-2025-21763: neighbour: use RCU protection in __neigh_notify() (bsc#1237897). - CVE-2025-21765: ipv6: use RCU protection in ip6_default_advmss() (bsc#1237906). - CVE-2025-21766: ipv4: use RCU protection in __ip_rt_update_pmtu() (bsc#1238754). - CVE-2025-21776: USB: hub: Ignore non-compliant devices with too many configs or interfaces (bsc#1238909). - CVE-2025-21782: orangefs: fix a oob in orangefs_debug_write (bsc#1239117). - CVE-2025-21785: arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array (bsc#1238747). - CVE-2025-21791: vrf: use RCU protection in l3mdev_l3_out() (bsc#1238512). - CVE-2025-21796: nfsd: clear acl_access/acl_default after releasing them (bsc#1238716). - CVE-2025-21802: net: hns3: fix oops when unload drivers paralleling (bsc#1238751). - CVE-2025-21821: fbdev: omap: use threaded IRQ for LCD DMA (bsc#1239174). - CVE-2025-21831: PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 (bsc#1239039). - CVE-2025-21846: acct: perform last write from workqueue (bsc#1239508). - CVE-2025-21848: nfp: bpf: Add check for nfp_app_ctrl_msg_alloc() (bsc#1239479). - CVE-2025-21865: gtp: Suppress list corruption splat in gtp_net_exit_batch_rtnl() (bsc#1239481). - CVE-2025-21871: tee: optee: Fix supplicant wait loop (bsc#1240183). - CVE-2025-21877: usbnet: gl620a: fix endpoint checking in genelink_bind() (bsc#1240172). - CVE-2025-21891: ipvlan: ensure network headers are in skb linear part (bsc#1240186). - CVE-2025-21916: usb: atm: cxacru: fix a flaw in existing endpoint checks (bsc#1240582). - CVE-2025-21922: ppp: Fix KMSAN uninit-value warning with bpf (bsc#1240639). - CVE-2025-21934: rapidio: fix an API misues when rio_add_net() fails (bsc#1240708). - CVE-2025-21935: rapidio: add check for rio_add_net() in rio_scan_alloc_net() (bsc#1240700). - CVE-2025-21969: Bluetooth: L2CAP: Fix build errors in some archs (bsc#1240784). - CVE-2025-21993: iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic() (bsc#1240797). - CVE-2025-21996: drm/radeon: fix uninitialized size issue in radeon_vce_cs_parse() (bsc#1240801). - CVE-2025-22007: Bluetooth: Fix error code in chan_alloc_skb_cb() (bsc#1240582). The following non-security bugs were fixed: - ceph: fix up error handling with snapdirs (bsc#1237836) - cpufreq: governor: Use kobject release() method to free dbs_data (bsc#1237800). - firmware: dmi-sysfs: Fix null-ptr-deref in dmi_sysfs_register_handle (bsc#1238467) - gro_cells: Avoid packet re-ordering for cloned skbs (bsc#1226323). - ipv4: add RCU protection to ip4_dst_hoplimit() (bsc#1239994). - ipv4: use RCU protection in inet_select_addr() (bsc#1239994). - ipv4: use RCU protection in ip_dst_mtu_maybe_forward() (bsc#1239994). - ipv4: use RCU protection in rt_is_expired() (bsc#1239994). - ipv6: icmp: convert to dev_net_rcu() (bsc#1239994). - ipv6: Use RCU in ip6_input() (bsc#1239994). - kernel/sysctl.c: define minmax conv functions in terms of non-minmax versions (bsc#1237782) - ndisc: ndisc_send_redirect() must use dev_get_by_index_rcu() (bsc#1239994). - ndisc: use RCU protection in ndisc_alloc_skb() (bsc#1239994). - net: add dev_net_rcu() helper (bsc#1239994). - net: fix SO_REUSEPORT return code (bsc#1239448) - net: mana: Support holes in device list reply msg (bsc#1240133). - net: treat possible_net_t net pointer as an RCU one and add read_pnet_rcu() (bsc#1239994). - net: usb: usbnet: restore usb%d name exception for local mac addresses (bsc#1234480). - pipe, sysctl: drop 'min' parameter from pipe-max-size converter (bsc#1237782) - pipe, sysctl: remove pipe_proc_fn() (bsc#1237782) - pipe: add proc_dopipe_max_size() to safely assign pipe_max_size (bsc#1237782) - pipe: reject F_SETPIPE_SZ with size over UINT_MAX (bsc#1237782) - scripts: fix incorrect regex escape With Tumbleweed's recent switch to Python 3.13 - sysctl: check for UINT_MAX before unsigned int min/max (bsc#1237782) - team: add ethtool get_link_ksettings (bsc#1228909).

Affected Systems

suse•kernel-default&distro=SUSE Linux Enterprise Live Patching 12 SP5
< 4.12.14-122.255.1
suse•kernel-default&distro=SUSE Linux Enterprise Server 12 SP5-LTSS
< 4.12.14-122.255.1
suse•kernel-default&distro=SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
< 4.12.14-122.255.1
suse•kernel-source&distro=SUSE Linux Enterprise Server 12 SP5-LTSS
< 4.12.14-122.255.1
suse•kernel-source&distro=SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
< 4.12.14-122.255.1
suse•kernel-syms&distro=SUSE Linux Enterprise Server 12 SP5-LTSS
< 4.12.14-122.255.1
suse•kernel-syms&distro=SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
< 4.12.14-122.255.1
suse•kgraft-patch-SLE12-SP5_Update_67&distro=SUSE Linux Enterprise Live Patching 12 SP5
< 1-8.5.1

SUSE-SU-2025:1293-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (472)