SUSE-SU-2025:1573-1
Vulnerability Summary
Timeline
Description
Security update for the Linux Kernel The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2025-21726: padata: avoid UAF for reorder_work (bsc#1238865). - CVE-2025-21785: arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array (bsc#1238747). - CVE-2025-21791: vrf: use RCU protection in l3mdev_l3_out() (bsc#1238512). - CVE-2025-21812: ax25: rcu protect dev->ax25_ptr (bsc#1238471). - CVE-2025-22004: net: atm: fix use after free in lec_send() (bsc#1240835). - CVE-2025-22020: memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove (bsc#1241280). - CVE-2025-22029: exec: fix the racy usage of fs_struct->in_exec (bsc#1241378). - CVE-2025-22045: x86/mm: Fix flush_tlb_range() when used for zapping normal PMDs (bsc#1241433). - CVE-2025-22055: net: fix geneve_opt length integer overflow (bsc#1241371). - CVE-2025-22097: drm/vkms: Fix use after free and double free on init error (bsc#1241541). The following non-security bugs were fixed: - scsi: smartpqi: Add ctrl ready timeout module parameter (jsc#PED-1557, bsc#1201855, bsc#1240553).
Affected Systems
- suse•kernel-rt&distro=SUSE Linux Enterprise Micro 5.3
< 5.14.21-150400.15.118.1
- suse•kernel-rt&distro=SUSE Linux Enterprise Micro 5.4
< 5.14.21-150400.15.118.1
- suse•kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.3
< 5.14.21-150400.15.118.1
- suse•kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.4
< 5.14.21-150400.15.118.1
References (33)
- https://www.suse.com/support/update/announcement/2025/suse-su-20251573-1/
- https://bugzilla.suse.com/1201855
- https://bugzilla.suse.com/1230771
- https://bugzilla.suse.com/1238471
- https://bugzilla.suse.com/1238512
- https://bugzilla.suse.com/1238747
- https://bugzilla.suse.com/1238865
- https://bugzilla.suse.com/1239968
- https://bugzilla.suse.com/1240188
- https://bugzilla.suse.com/1240195
- https://bugzilla.suse.com/1240553
- https://bugzilla.suse.com/1240747
- https://bugzilla.suse.com/1240835
- https://bugzilla.suse.com/1241280
- https://bugzilla.suse.com/1241371
- https://bugzilla.suse.com/1241378
- https://bugzilla.suse.com/1241421
- https://bugzilla.suse.com/1241433
- https://bugzilla.suse.com/1241541
- https://www.suse.com/security/cve/CVE-2021-47671
- https://www.suse.com/security/cve/CVE-2022-49741
- https://www.suse.com/security/cve/CVE-2024-46784
- https://www.suse.com/security/cve/CVE-2025-21726
- https://www.suse.com/security/cve/CVE-2025-21785
- https://www.suse.com/security/cve/CVE-2025-21791
- https://www.suse.com/security/cve/CVE-2025-21812
- https://www.suse.com/security/cve/CVE-2025-21886
- https://www.suse.com/security/cve/CVE-2025-22004
- https://www.suse.com/security/cve/CVE-2025-22020
- https://www.suse.com/security/cve/CVE-2025-22029
- https://www.suse.com/security/cve/CVE-2025-22045
- https://www.suse.com/security/cve/CVE-2025-22055
- https://www.suse.com/security/cve/CVE-2025-22097